Evaluate ACL rule permission requirements

An ACL rule only grants a user access to an object if the user meets all of the permissions required by the matching ACL rule.

  • The condition must evaluate to true.
  • The script must evaluate to true or return an answer variable with the value of true.
  • The user must have one of the roles in the required roles list. If the list is empty, this condition evaluates to true.
  • [Record ACL rules only] The matching table-level and field-level ACL rules must both evaluate to true.
Figure 1. ACL evaluate permissions
ACL evaluate permissions