Hi Rajesh, I think what you are looking for is row-level security (restricted database records) not user interface security [1].
So your restrictions are more-or-less queries against the user login to check if the party of logged in user has a certain role. Essentially, the screens that you want to design with these restrictions should check in <actions>...</actions> if roles-to-entities exist and then display related records. [1] https://cwiki.apache.org/confluence/display/OFBIZ/OFBiz+Security+Permissions#OFBizSecurityPermissions-Atrecordlevel,byusingRolelimitedpermissionsorrelatedmeans On Mar 16, 2018 10:04 AM, "Rajesh Mallah" <mallah.raj...@gmail.com> wrote: > Hi , > > I am trying to model multiple suppliers ( scale=10000's) and > multiple buyers (scale=10000's) . > > Each supplier (a PartyGroup/Person) shall have (its own) product > categories , > products , store , warehouses etc that is required to run his business. > > Each buyer (a PartyGroup or Person) shall have minimal of such entities > and its role is limited to buying and creating financial transactions. > > Can anyone point me to useful documentation that shall help me > to create a set of permission / role assignment so that each of the stake > holders are able to see only that much information which they are > supposed to see. By "supposed" i mean the security accesses that > are generally accepted , eg each supplier should be able to see only > his products / its pricings and all entities owned by him only. > > Please Note all the above *needs *to be preferably done under a single > tenant. > > Also any direct guidance is also solicited. > > regds > mallah. >
