function readOnly(count){ }
Sign Up ›
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
Learn More

Browse by Topic
ShowAll Questionssorted byDate Posted
+ Start a Discussion
alexandre.schaefferalexandre.schaeffer 

Extending the security concept: conditional CRUD access to an object or field

Hi,

 

I'm assessing the Force.com platform as a potential PaaS for an ISV. Is it possible the extend the configuration possibilities of platform? One example would be adding the possibility of conditional CRUD access to an object or field.

 

Example: Per default my Profile can access the Company object and CRUD it. I want to be able to define that if the company type is e.g. a hospital then I'm only allowed to view that record.

The same could be on a field-level: if the company type is a pharmacy, then I can CRUD the company but I'm not allowed to edit the revenue field for instance.

 

It would be interesting to know if:

- I can do that programmatically and

- If I can actually add that functionality to the back-end in order to extend the configuration possibilities of Force's security management.

 

Thanks!

Alex