Hello,
I have a problem with field level security.
I have entity entityX, and then have set of financial fields on this entityX.
These fields are under field level security profile named "Financials".
Next, I have a team which can read/write those fields. This team "Team1" is in business unit called "Subunit1".
"Team1" has a role "ReadWholeOrganization", which enables it to read entityX from complete organization.
"Team1" also has a role "WriteOwnOrganization", which enables users from this team to read and change entityX in his unit and sub-units.
How can I disable "Team1" users to see financial data for entityX, if entityX is owned by users outside "Team1" users unit?
In other words, i want "Team 1" users to see all entityX entities based on "ReadWholeOrganization" role, but I don't want them to see financial data for complete organization. I want "Team1" to see financial data only
for their unit and subunits.
How can I solve this?
Extracting financial fields in another entity is out of the question.