Suppose we have a very simple Smart Devices Application which allows users to see all the products a company distributes.
One possible requirement is that the same application is used by employees of the company (who have the authorization to add, update, or delete products, and change their prices), and will be used by users who are interested in buying those products and are allowed just to navigate through the products list. Authorization is needed to update products but not to navigate the products catalog.
Another different requirement may be that authorization is needed for both cases, and the authorization for each action (navigate the products catalog and update the data) has different permissions related to it.
Let's see by steps what we may want to achieve ( regarding permissions in this application ), and how to solve it using GAM.
Objects of the application:
- Product Transaction (Business Component)
- Dashboard1 (Dashboard object up to GeneXus X Evolution 3) which has the following item:
- WorkWithDevicesProduct (WWSD object which lists all the products). By selecting one item of this list you can view the detail of the product; and update, or delete the product if desired. There is also the possibility of adding a new product by using the menu of this object.
See How to: Permissions in SD applications, CRUD restricted
See How to: Permissions in SD applications, WW and CRUD restricted
Full Control Permissions and inheritance
GAM Authorization Scenarios