web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Welcome to the Power Platform Communities
🚀 Season of Sharing Community Challenge Launch!
Ask A Community Pro - Series II
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / multiple table permiss...
Power Pages
Answered

multiple table permission in portal on same table?

(0) ShareShare
ReportReport
Posted on by Jerome P1

Hi,

 

I have a need requiring 2 differents permissions agaisnt the same table, the account table on a custom portal

first,

my user are authorized to access (read and edit) multiple specific accounts. and fill related record, like contracts information.

so I have a page listing the authorized account.

 

second,

in my contract, there is a lookup field connected to the account table, and there, the user can select any account, not only the authorized ones.

 

so it's where I have a conflict, I have to grant read access to all the accounts, else the lookup is not able to search for any account, but this allows the user to see the details of all the accounts at the same time.

 

is there an option, at the form level, which can be used to make sure the user access the record through the right permission?

or with the right privilege? (if the user can't edit the record, the access is denied)

or an option allowing the lookup field to bypass the permissions?

 

or do I have to add some liquid code to test this?

Categories:
Security
I have the same question (0)
  • Verified answer
    Christian Leverenz Profile Picture
    Christian Leverenz 1,214 on at

    Hi @Jerome2 ,

    as far as i know there is no chance solving this issue out of the box. The problem is, that you really need access to all accounts in order to select _and_ append one to your lookup. 

     

    Even if i see a lot of securityissues here, this could be done with some external helpers: You could provide an azurefunction or whatever to access the dataverse (this bypasses all security....) and provide a service so search for all accounts. Another function could take an accountid and a contactid and relate the specific account to the contact again by bypassing all security.

    You could use implicit grant ( https://docs.microsoft.com/en-us/power-apps/maker/portals/oauth-implicit-grant-flow ) to ensure, that the contactid updating itself is the contactid it claims to be (or to read the contactid via implicit grant)

    This all involves a lot of no/low-code or a lot of pro-code and will be a severe securitybreach 🙂 .

     

    So, i did not write this 🙂

     

    Have fun,

      Christian

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
🚀 Season of Sharing Community Challenge Launch!
Ask A Community Pro - Series II

Quick Links

Season of Sharing Community Challenge Launch!

Jump in, show your community spirit, and win prizes!

Kudos to our 2025 Community Spotlight Honorees

Expanding mentorship, skilling, and AI innovation

Congratulations to the May Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
11manish Profile Picture

11manish 50

#2
Valantis Profile Picture

Valantis 26

#3
omkarsupreme Profile Picture

omkarsupreme 24

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans