Hi,
I am customising suitecrm for use at work and one important and useful feature is having each user (agent) see different modules and different access etc.
This seemed to be doable with the ‘role management’ module but i have tried testing the different permissions, adding a user to the role groups and then selecting to disable and not allow certain modules for that group but absolutely nothing happens!
From what I can tell, permissions are based upon what was in effect at the time the user was authenticated. Once you change permissions, make sure you log out and then log in again to make sure they affect you.
Interesting. It’d be great if the author would update the Security Groups module to check permissions, each time you load a screen. Permissions can change from one moment to the next. Most mainstream web apps today, including Facebook, check permissions on each screen load, and even on each click.
Just adding some background around how permissions are cached. There is a tremendous amount of overhead each time the permissions are loaded so the SugarCRM framework is made in a way to cache it upon authentication only. This has nothing to do with SecuritySuite and I’d rather not change that default behavior because of the negative affects. This mostly affects initial setup and testing by admins when setting up groups/permissions the first time.