Michael, One DB concept here that might help is a "View" concept. You could grant the users access to a different form that actually points at the "real form" but also includes a restriction to the data in it. (by building a self join of this form where: '1' = $1$ AND <other stuff here. Include only the fields from one side of the join.)
Sure you then need to give the group access to the right form, which brings you back to an ARS level permission group... (or some other logical/obsecurity controls that you could build) But the important part is that the user need not have access to the "real form" just the "view" (ARS join) form. However, note: If the users really have access to the data and your using obsecurity to avoid them seeing other customers data then this type of system would likely fail any real security audit. HTH. -- Carey Matthew Black Remedy Skilled Professional (RSP) ARS = Action Request System(Remedy) Solution = People + Process + Tools Fast, Accurate, Cheap.... Pick two. Never ascribe to malice, that which can be explained by incompetence. On 5/2/06, Michael Worts <[EMAIL PROTECTED]> wrote:
** Hello everyone, My customer is wanting to give a 3rd Party company access to one of their Remedy forms via the Midtier but the thing is the data in this form contains information for all third parties so I need to restrict their access. What I would really like to do is give the 3rd Party direct access to the Form in Search mode and let them do their own query but obviously they will be able to see every record so I am trying to think of a way around this. I know Row level locking is useful for this type of thing but I think that may be a bit of an overkill if I have to start creating a group for each third party that needs access to their data. Anyway, my customer already uses Row Level Locking because they share the application with another department. I was wondering if there was a way of appending to the Search qualification so if they run a query in Search Mode, I can append WHERE customer = 'XXXX' after they hit the Search button and then it would return only their data? Besides that I could always create a table field and manage access through the EXTERNAL command but I would like to to use the Search Mode if possible. At least then it requires less workflow and I can use native Remedy functionality. Any ideas would be appreciated. NOTE: AR Server and Mid-tier are both on v6.3. Thanks, Michael. Michael Worts Remedy Specialist IGS, Business Consulting Services ITIL Service Manager Certified Tel: +44 (0)1483 875273 Mob: +44 (0)7801 755346 Internet: [EMAIL PROTECTED]
_______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
