ACL rules in scoped applications

You can create ACL rules for objects in the same scope as the ACL rule and for tables with at least one field that is in the same scope as the ACL rule.

You can create ACL rules for objects in the same scope as the ACL rule and for tables with at least one field that is in the same scope as the ACL rule. For tables that are in a different scope than the ACL rule record, the types of rules are limited.
  • You can create an ACL rule for any table, UI page, or other object that is in the same scope as the ACL rule.
  • You can create an ACL for a field that is in the same scope as the ACL rule.
    • If the table is in the same scope, you can use a script to evaluate permissions.
    • If the table is in a different scope, you cannot use a script to evaluate permissions.
  • You cannot create or modify ACL rules for objects that are in a different scope than the application you have selected in the application picker, including adding a role to an ACL in a different scope.
  • You can create wildcard table rules (*) only in the global scope.
  • You can create wildcard field rules (*) only for tables in the same scope as the ACL rule.