Hello, Experts
I am trying to figure out a way to limit permissions to certain attributes on user objects in Web Portal for version 7 based on business roles or some dynamic criteria. My requirement is that end users should only be able to edit only their address information and view the rest of data, business roles A & B can modify attributes X, Y, Z and view all of the data, role C & D can modify any attribute and view any attribute.
I have been able to find in Web Designer the properties of each attribute that I expose to Web Portal and I know I can set each one of them globally to be just readable, but that makes them readable for everyone which doesn't fit my requirement since I need to be able to specify permissions more granular.
I have attempted creating custom Application roles in Manager and specifying to those roles what attributes from which tables can be edited and viewed, but that didn't seem to work or at least I don't believe I properly assign custom application roles as I am not sure if I need to find each OOTB application role and substitute them with custom roles.
Please let me know your recommendations on this issue.
Thanks,
Sergei Shvets
