We are working on designing the requirements for the combination of row level & object level security in our future releases. Hence I thought I should post this for some advice and ideas from experts here.

Object Level Security:

for example, if have 2 reports R1 ,R2,R3 and R4
User U1 should see only R1 and R3
user U2 should see only R2 and R4.

Row level Security:

Further again there would be row level restriction such as
User U1 should see only data for Client1 in R1 and data for Account1 in R3.

User U2 should see only data for Client2 in R2 and data for Account10 in R4

We will have a user security table in the Database maintaining this information , so that BO could use @variable(‘BOUSER’) to identify the user’s data level rights.

In this case how could we combine for Report name and Data level access??

Any thoughts the best way to acheive this?

Thanks
Arun.

anair_bo (BOB member since 2006-12-05)

Just to make it clear, this(below) is not object level security.

Start Here

zack (BOB member since 2007-08-02)

Sorry for using the wrong term. What I mean is Report level access.

We have already implmented the Row Level security using database table and BOUSER variable in our current release.

anair_bo (BOB member since 2006-12-05)

Report level access is object security. It is handled in CMC.

Good for you. It is the best way to handle data security in my humble opinion.

substring (BOB member since 2004-01-16)

Are you talking about legacy BO 5.x or 6.x?