Limiting access to a subset of the data.

**hkphooey** · 2007-05-18, 07:39 AM

(Using 4.5.1d on latest Bitrock Linux stack, although that isn't entirely relevant here)

Now here's a tricky problem. In my client's database, they have a bunch of contacts. Half of the contacts can be used by anyone who uses the system. The other half, they want to somehow mask, so that only authorised users can send email campaigns out to them.

I can think of two broad approaches to this, but neither seem to be possible within SugarCRM. I'll outline them here and if anyone has any thoughts on how to do this, or another approach, please speak up.

1) The first way would be to somehow limit permissions on half of the data. The only way I can see to do this is to make everyone only able to see/edit their Own data. However this doesn't work, as the public half of the data needs to be shared between everyone. If we could organize users into groups that might solve the problem, but I can't see a way to do that.

2) The second way is to somehow tag the data as private, and just educate the users not to use it unless they're authorised. i.e they would specifically have to click a box to include that data when they're making a search. But this approach doesn't work either: Non authorised users should be limited to the public half of the database, whereas authorised users can use the whole database. Therefore if we include a checkbox on the search form, for example, it will stop non-authorised users from using the private half, but then Authorised users will _only_ be able to use the private half, not both halves. Does this make sense?

Can anyone think of a way to do this? Let me know if you need me to explain more clearly.

**drodrig** · 2007-05-18, 11:22 PM

Hello.

I am in a similar situation. For me an answer would be to have a way to set up a global or "corporate" contact list, then allow personal lists as desired (sort of like what Outlook does running on Exchange). A "private" checkbox in the "Edit Contact" and "Mass Updates" areas would be a good start. Does anyone know how easy/hard that is to implement?

**hkphooey** · 2007-05-27, 03:27 AM

I think I've found a solution in the form of a third party module - TeamsOS

Check out this thread. http://www.sugarcrm.com/forums/showthread.php?t=21060

**pblag** · 2007-05-27, 04:56 AM

Hi All!

I think it is possible to develop this functionality.
Check box in the edit view is very good idea! But also we need second check box for User.

So if an user has a check box checked than he can view all data. If user's check box is not checked he can view only public data.
Also we will use a check box in the contacts to say that contact is public or private. (public - not checked, private checked )

If someone interested please feel free to contact us.