Access Mask
Editing the Access Mask lets you control which fields are visible when editing a User.
Editing Access Masks restrict the visible fields when editing an Asset or User. Access masks are applied according to the following rules:
- A mask is only applied if the logged-in asset is part of a Role that has the _UseUserAccessMask privilege.
- The Edit User form will display only the fields that are selected in any access mask enabled for the User Role.
- Assets that are members in multiple Roles with multiple _UseUserAccessMask privileges will see all fields enabled for any of the Roles
Setup
In Site Admin
1. Click on your application to access its properties.
2. In Privileges and Plugins > Admin > enable _EditUserAccessMask
3. Save the application properties at the bottom of the screen.
In the application
1. Open the User Access Mask Editor in the Assets panel.
2. Select New… and give the access mask a descriptive name, for example, Show Only Groups.
3. In this example, we only want the user to have access to the Groups properties and the selected Groups.
4. Click on Save.
5. Under Admin > Roles, enable the new access mask for the roles you want them to have.(The privilege is located under the Admin folder) For example, in this case, we will use a copy of an Operator role to make customizations.
6. Save the role.
Result
When the Operator logs in to the application and edits a user, they will see only the properties selected in the mask and not the rest of the user properties.