Building security rules
As we work through the rest of the chapter, we'll use the following scenarios to implement different security rules. They outline particular use cases. I find this very helpful to organize exactly what is necessary to implement.
Only authorized users are allowed to create or edit Maintenance tasks. The records become read-only when the tasks are closed.
Only a team leader is allowed to edit the Priority field when any task is not closed.
A user can only add to Work notes for a Maintenance task if they are on the Work notes list or in the Assigned to field.
Conditioning contextual security
A contextual security rule is made up of three elements. These are evaluated together to determine if the user can carry out a particular action:
A condition (if it applies to the record)
A script (that returns
true). This is available when the Advanced checkbox is ticked.One or more required roles, where a user must have at least one
A rule can have any combination of these elements. A...
