Master / detail security access

Hi,
I'm not sure that I understand you correctly.

'User can only see their own datas' security method allows to add new record to the table. Is it what you want?

Hi Jane,
You understand well. but that's to say that an other user can add products in an order that he doesn't own (and on which he can't edit)
And that's not good. <img src='https://asprunner.com/forums/file.php?topicimage=1&fieldname=reply&id=34248&image=1&table=forumreplies' class='bbc_emoticon' alt=':)' />
say I'm a foreign user, consulting the orders :

• I'm not allowed to edit an order, only seeing it. and if I want to see the rows (products ordered) of the order, I'cant see, anything, as I'm not the owner for these rows (detail table). This is correct.
  
• What is not correct, is that I can add new rows (products) to the order.
  But I understand that this is a special situation, and PHPR is right in it's way to proceed. My question was to know if there is a way to avoid this problem...

Hi,
I see what you're saying.

You can check order number and user permissions on the details list page and remove add link in the List page: Before display event on the Events tab.

Here is a sample:

global $strTableName;

Jane, just one word, PHPR is incredibly powerfull <img src='https://asprunner.com/forums/file.php?topicimage=1&fieldname=reply&id=34383&image=1&table=forumreplies' class='bbc_emoticon' alt=':)' />