I created the role and marked in permissions of Invoices and Quotes:
Enabled Owner Owner Owner Not Set Owner Not Set Owner
So this user can see all assigned Invoices and Quotes, like a company employee.
But I want to make a role “Client” which can see only Invoices and Quotes of his Account or Contact, as client. Is it possible?
Check out this article to learn how to set permissions
https://www.sugaroutfitters.com/docs/securitysuite/example-of-a-typical-setup
But assigning a role for each client can get complicated.
Other than that, I don0t think it’s proper architecture to let clients into your system, hoping they will see only their data. It’s not built to handle security like that, there will be many holes. I believe what you’re looking for is something like the AOP Portal.
Currently the portal only supports a few modules like Cases and Documents, but it can easily be extended with a little code.