Hi,
I have a table with two fields, CreatedByID and OwnerID, that respectively define who created a record and who is the assigned owner of the record.
I am using master-detail relationship combined with advanced security settings to so that users can see and edit their own data only. And an Admin user has been configured to be able to see all records. However this approach can be applied only to one of the above fields and I need to let users view both the records they created and the records, created by others, for which they are the assigned owner.
I have tried doing this by:
- Defining a $_SESSION["usersIDNumber"] in a global event at login
- Removing the master-detail relationship
- Editing the "where" part of the SQL query in the _variables.php file
....where `CreatedByID` = ".$_SESSION["usersIDNumber"]." or `OwnerID` = ".$_SESSION["usersIDNumber"];
That works perfectly for the users but does not work for the Admin user who can then only see/edit their own records and not all records.
I do not want to create another view of the records just for the Admin user.
So, is there a way of getting the normal users to see/edit both the created and assigned records AND allow the Admin user to see/edit all?
Giles