官术网_书友最值得收藏!

Object-Level Security (OLS)

The first level of access type is Object-Level Security (OLS), as we saw previously on the profile edit page:

These kinds of operations are usually referred to as CRUD operations:

  • Create
  • Read
  • Update (or Edit)
  • Delete

Some of them respect sharing configurations while some do not:

  • Read: Users can view records of this type if the sharing settings allow them to (sharing respected).
  • Create: Users can create and view records (sharing respected regarding the read operation); that is, you cannot have Create without Read enabled.
  • Edit: Users can edit and read records (sharing respected); there can be no Edit without Read.
  • Delete: Users can read, edit, and delete records (sharing respected); there can be no Delete without Read and Edit.
  • View All: Users can see all the records of this object and thus sharing is not respected.
  • Modify All: Users can read, edit, delete, transfer, and run approval on all the records of this object, thereby overriding the sharing settings.

View All and Modify All work like the View All Data and Modify All Data user permissions on profiles, but there should be a better alternative to convey better access granularity to records.

Object accessibility causes the object's tab to be visible to a given user.

View All Data and Modify All Data permissions should be granted to administrators only as they should be the only ones who can view every record in your organization.
主站蜘蛛池模板: 方正县| 上饶县| 嘉黎县| 旬阳县| 鹤岗市| 磐安县| 安徽省| 高平市| 陆丰市| 巴林左旗| 南丹县| 自贡市| 乌恰县| 南涧| 遵义县| 阜南县| 扶风县| 东阳市| 从化市| 丽江市| 龙井市| 永寿县| 敦煌市| 静安区| 灵台县| 民乐县| 平乡县| 柳州市| 昌宁县| 疏附县| 黄大仙区| 调兵山市| 铅山县| 平阳县| 义马市| 大田县| 屏南县| 宜州市| 苏州市| 明光市| 新乡市|