S
Stephanie
I have a database that catalogues the items in our
archive. The entire database is accessed through the
switchboard function, which has multiple levels ("Enter or
edit," "Search," "Print reports," "Sign items in or out,"
etc.).
I work part-time but the database needs to be accessible
even when I'm not here (for search and sign-in/-out only -
I am the sole editor/archiver). I would like to know if
the following is even possible:
"General User" (basically, anyone but me) logs on to the
database and maliciously wants to play with data. He
clicks on the button to "enter or edit information,"
clicks on the button for the filing cabinets, but receives
only a blank screen. He decides it's not worth the
effort, but still needs to find some information, so he
goes back to the main screen and clicks on the button
to "Search the archive." The parameter request comes up
for the filing cabinets, he enters the job number, and a
form pops up (based on the query) with all the
information - the form-level security has already been set
so the data isn't editable in that form. He gets the
information he needs and wants to sign that particular
item out of the cabinet, so he goes back and clicks the
button for "Sign items out of the archive." Up pops a
form in add-only mode; he enters his name and the item
number and closes the form. Then he changes his mind and
decides he doesn't need to take the item with him, so he
signs it back in by clicking the button for "Sign items
back into the archive." Up pops a form in edit-only mode;
he finds his entry (dated and timed), and updates that
record. He then heads on his merry way.
Basically, most of that is already set up at form-level;
I'm just wondering, because I want to be able to use the
same database as owner/administrator to edit information,
if it's possible to set it up from a security standpoint
as I described, with "General User" having use-access to
certain forms and queries, but not to others. I don't
know if I can set no-edit form-level security for EVERY
form/table because I need to be able to get in there to
make changes. And "General User" would need to be able to
make changes to the Sign-in/-out form.
I am essentially a newbie - I figure things out by trial
and error based on what I want the database to do, so I
don't understand most technical language, which is the
deal with the story... Thanks for any help anyone can
give me.
archive. The entire database is accessed through the
switchboard function, which has multiple levels ("Enter or
edit," "Search," "Print reports," "Sign items in or out,"
etc.).
I work part-time but the database needs to be accessible
even when I'm not here (for search and sign-in/-out only -
I am the sole editor/archiver). I would like to know if
the following is even possible:
"General User" (basically, anyone but me) logs on to the
database and maliciously wants to play with data. He
clicks on the button to "enter or edit information,"
clicks on the button for the filing cabinets, but receives
only a blank screen. He decides it's not worth the
effort, but still needs to find some information, so he
goes back to the main screen and clicks on the button
to "Search the archive." The parameter request comes up
for the filing cabinets, he enters the job number, and a
form pops up (based on the query) with all the
information - the form-level security has already been set
so the data isn't editable in that form. He gets the
information he needs and wants to sign that particular
item out of the cabinet, so he goes back and clicks the
button for "Sign items out of the archive." Up pops a
form in add-only mode; he enters his name and the item
number and closes the form. Then he changes his mind and
decides he doesn't need to take the item with him, so he
signs it back in by clicking the button for "Sign items
back into the archive." Up pops a form in edit-only mode;
he finds his entry (dated and timed), and updates that
record. He then heads on his merry way.
Basically, most of that is already set up at form-level;
I'm just wondering, because I want to be able to use the
same database as owner/administrator to edit information,
if it's possible to set it up from a security standpoint
as I described, with "General User" having use-access to
certain forms and queries, but not to others. I don't
know if I can set no-edit form-level security for EVERY
form/table because I need to be able to get in there to
make changes. And "General User" would need to be able to
make changes to the Sign-in/-out form.
I am essentially a newbie - I figure things out by trial
and error based on what I want the database to do, so I
don't understand most technical language, which is the
deal with the story... Thanks for any help anyone can
give me.