Sage 100

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------

------Original Message------

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------

Well, that's too bad. They had a user create a new vendor for an invoice that was emailed to them for $57K so I suggested they take away the Create option. I was thinking Modify would allow for more than just phone or address changes. Looks like it puts them one step closer to Altec's DocLink solution - which they really want but they have about five other things that top that request. Thanks though, @David Speck II!​

------------------------------
Therese Logeais, Technology Integrators
------------------------------

Original Message:
Sent: 08-22-2019 17:22
From: David Speck II
Subject: Security question

If I'm not mistaken, those maintenance tasks inherit from the existing security object for the vendor, so not having create rights for AP_Vendors means no create rights for AP_VendorContact and AP_VendorDocuments.

Someone may correct me on this though.

Thanks

David Speck

TSS

Sage | Sage 100 Certified Consultant

Original Message------

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------

A script to control Create for just AP_Vendor should be possible. Check a role (as a filter), and block new records (EditState 2 = new record) with an appropriate trigger.

------------------------------
Kevin Moyes
Technical Systems Analyst
Munjal White Consulting Co.
Toronto ON
------------------------------

Original Message:
Sent: 08-22-2019 17:28
From: Therese Logeais
Subject: Security question

Well, that's too bad. They had a user create a new vendor for an invoice that was emailed to them for $57K so I suggested they take away the Create option. I was thinking Modify would allow for more than just phone or address changes. Looks like it puts them one step closer to Altec's DocLink solution - which they really want but they have about five other things that top that request. Thanks though, @David Speck II!​

------------------------------
Therese Logeais, Technology Integrators
------------------------------


Original Message:
Sent: 08-22-2019 17:22
From: David Speck II
Subject: Security question

If I'm not mistaken, those maintenance tasks inherit from the existing security object for the vendor, so not having create rights for AP_Vendors means no create rights for AP_VendorContact and AP_VendorDocuments.

Someone may correct me on this though.

Thanks

David Speck

TSS

Sage | Sage 100 Certified Consultant

Original Message------

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------

------Original Message------

A script to control Create for just AP_Vendor should be possible. Check a role (as a filter), and block new records (EditState 2 = new record) with an appropriate trigger.

------------------------------
Kevin Moyes
Technical Systems Analyst
Munjal White Consulting Co.
Toronto ON
------------------------------

------Original Message------

A script to control Create for just AP_Vendor should be possible. Check a role (as a filter), and block new records (EditState 2 = new record) with an appropriate trigger.

------------------------------
Kevin Moyes
Technical Systems Analyst
Munjal White Consulting Co.
Toronto ON
------------------------------

Awesome - thanks all!!

------------------------------
Therese Logeais, Technology Integrators
------------------------------

Original Message:
Sent: 08-22-2019 17:39
From: David Speck II
Subject: Security question

Kevin, that was the direction I was thinking of if they would be alright with a scripting solution. Using placeholder roles is a really good way to supplement deficiencies in role security.

Thanks

David Speck

TSS

Sage | Sage 100 Certified Consultant

Original Message------

A script to control Create for just AP_Vendor should be possible. Check a role (as a filter), and block new records (EditState 2 = new record) with an appropriate trigger.

------------------------------
Kevin Moyes
Technical Systems Analyst
Munjal White Consulting Co.
Toronto ON
------------------------------

Like Kevin said, it should be scriptable. 

Im moving this out of #Urgent since it appears to be answered. ​​

------------------------------
Robert Wood
Consultant
90 Minds
Ocala FL
352-615-5898
------------------------------

Original Message:
Sent: 08-22-2019 17:28
From: Therese Logeais
Subject: Security question

Well, that's too bad. They had a user create a new vendor for an invoice that was emailed to them for $57K so I suggested they take away the Create option. I was thinking Modify would allow for more than just phone or address changes. Looks like it puts them one step closer to Altec's DocLink solution - which they really want but they have about five other things that top that request. Thanks though, @David Speck II!​

------------------------------
Therese Logeais, Technology Integrators
------------------------------


Original Message:
Sent: 08-22-2019 17:22
From: David Speck II
Subject: Security question

If I'm not mistaken, those maintenance tasks inherit from the existing security object for the vendor, so not having create rights for AP_Vendors means no create rights for AP_VendorContact and AP_VendorDocuments.

Someone may correct me on this though.

Thanks

David Speck

TSS

Sage | Sage 100 Certified Consultant

Original Message------

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------

Post read event on ap_vendor should be the best event as it is triggered when a new key is entered as well. If the EditState is 2 and they do/don't have the role assigned, then display a message and use oBusObj.Clear or oSession.AsObject(oScript.UIObj).BT_Cancel if the ui is present (oScript.UIObj > 0) to clear the record.
You could wait until the pre write event but that would probably piss them off to end up filling a bunch of data only to be told they can't create the record. Who knows, maybe that will teach 'em a lesson.

------------------------------
David Speck II
Tennessee Software Solutions
------------------------------

Original Message:
Sent: 08-22-2019 17:34
From: Robert Wood
Subject: Security question

Like Kevin said, it should be scriptable.

Im moving this out of #Urgent since it appears to be answered. ​​

------------------------------
Robert Wood
Consultant
90 Minds
Ocala FL
352-615-5898
------------------------------


Original Message:
Sent: 08-22-2019 17:28
From: Therese Logeais
Subject: Security question

Well, that's too bad. They had a user create a new vendor for an invoice that was emailed to them for $57K so I suggested they take away the Create option. I was thinking Modify would allow for more than just phone or address changes. Looks like it puts them one step closer to Altec's DocLink solution - which they really want but they have about five other things that top that request. Thanks though, @David Speck II!​

------------------------------
Therese Logeais, Technology Integrators


Original Message:
Sent: 08-22-2019 17:22
From: David Speck II
Subject: Security question

If I'm not mistaken, those maintenance tasks inherit from the existing security object for the vendor, so not having create rights for AP_Vendors means no create rights for AP_VendorContact and AP_VendorDocuments.

Someone may correct me on this though.

Thanks

David Speck

TSS

Sage | Sage 100 Certified Consultant

Original Message------

Customer has set up a role that can view, modify and delete vendors but not create. Unfortunately, modify must be pretty limited as users with that role cannot add a vendor contact or set up paperless office. WTH??

------------------------------
Therese Logeais, Technology Integrators
------------------------------