Current filter:
                                You should refresh the page.
                                  • I would absolutely love to see a new mode of data presentation or security model options which would satisfy a most basic business rule: limit your access to records to only those that you created. This would follow to all descendants of course. My first thought was to have an attribute like [OwnerEditMode] and would require the audit module or the presence of a specific field to track the user that created the record.
                                    This would so easily enable us to present systems that limit access to records in a logical fashion within a multi-user environment.

                                    Proposed Solution:

                                    as above.

                                XAF v2011 vol 2 introduces the new security model that includes the following ready-to-use permission types:

                                - Type Permission - Grants access to a particular object type
                                - Member Permission - Grants access to specific members of a type
                                - Object Permission - Grants access to objects satisfying a particular criteria

                                You can introduce the business object's Owner property that refers to a user and create an Object Permission with "[Owner.Oid] = CurrentUserId()" criteria.

                                See Also: Permission Types in the Complex Security Strategy (this link will be available shortly after the v2011 vol 2 release).

                                Thanks,
                                Konstantin B