Row Level Security - Company/Department-based Access control

[shotashirai]

Feature Request

Description

We have 100+ retail shops and want to give access to the shop manager. The manager should be able to see only the employees in their own branch and should not see the other shops. I am thinking of using the Company field to assign shops. Can we restrict access based on company or department?

Use Case

Multiple companies and multiple managers with access control based on company/department.

Proposed Solution

Restrict the view based on the company.

[horilla-opensource]

Hi @shotashirai ,

The current system works in the same manner only.

The views are restricted for people based on their company. Only they can view details of records belonging to their company.

The super admins has access to all company data's and for others its restricted to their own company only.

[shotashirai]

@horilla-opensource Thanks for your reply.

For now, the employees who are not assigned to any company (company field in work info = "none") are shown in all the companies even after switching the company from the "companies" tab.

After signing in to the portal with the account assigned to a company, the employees in the "none" company are shown.

These employees in "none" company should not be shown when a company is selected or signed in with the account assigned to a specific company.

If needed, I can create a bug report for this

[horilla-opensource]

Hi @shotashirai ,

The permission levels has been updated to company level access control.

Please check and let us know if you have any questions or concerns.

With Regards, Team Horilla