Question

Photo of Teresa Bice

0

Setting Security on the New Family page

We have a data team that enters all new families, so i don't want the rest of the staff to be able to add new records.  It looks like the 'Staff Role' has view only access to the new family page, but when I log in as a staff member, I can add records.  How do I limit this to just our data team?  Thanks!

Security
  • Photo of Jim Michael

    0

    There are a couple of things here... you are correct that Staff Workers role can add new families by default. It can be confusing, but View rights to the page/block is ALL they need to do this. The "edit" right means the person/role would have the ability to edit the _page_ or _block_, which is not the same as "editing" within the functionality of the block itself.



    That said, fixing this is pretty easy. 1. Create a new "RSR - Add People" role or whatever you want to call it, and add your data people to it. 2. Go to the New Family page and edit the security on it to allow View to your new role, and also add RSR -Rock Administrator for view/edit, then add an all user DENY entry below that. Now no one but Your Add Family and Admin roles will even see the New Family page in the menu.


    Note that you could also use the existing Data Integrity Worker as the allowed role on the New Family page if the same people in that role are the ones that should be allowed to add people.