Stuart McLachlan
stuart at lexacorp.com.pg
Sun Mar 18 05:58:54 CDT 2012
It's often not that simple. Take HR records for instance. Each manager can see only the records belonging to their subordinates (which may be N tiered). HR staff generally can see the records of all staff up to a certain level. Certain HR staff can see certain management records HR Senior Management can see all records. So security has to consider both employee level and organisation structure. On 18 Mar 2012 at 10:36, Benson, William (GE Global Re wrote: > Why on earth.... > > Until you wrote what you did in response to Charlotte, hers is exactly > the solution I imagined.... > > > A user has a security level, and the record has a security level, and > any time a user has a security level above that required for the > record, they can see it. >