Users without necessary permissions can also edit fields which are handled under specific permissions. How can I solve this problem?
permissions.ini
- Code: Select all
[Field Viewer]
view=1
[Field Editor]
edit=1
Users who have Field Editor role can edit fieldX, users who have Field Viewer role can view fieldX. Here Field Viewers can also change value of fieldX (a select widget is used for fieldX).
I wrote necessary permission function for fieldX in its table's delegate class and checked that function, no problem there.