3 Approaches to Restricting Access to SharePoint Columns and Metadata

Discuss this Blog Entry 5

on Dec 7, 2012
Hi Dan, I just came across this exact same issue with a Leave Register that contained some sensitive info e.g. reason for leave, leave entitlements, etc. I hadn't thought of splitting the data across 2 lists. It seems so simple yet it never occured to me. Unfortunately it only solves part of the problem though as we are trying to create a self service Leave Application form so the user creating the entry requires access to both data sources, at least initially which defeats the purpose of splitting the lists up. In circumstances where HR enter some of the data your solution would work fine, however, I can't think of a way of doing the form that doesn't involve some form of temporary datastore before workflow moves it to the correct place (and even that may not work without a elevating privileges). Can you think of an alternative way of dealing with this? cheers Dave
on Jul 27, 2013

There are ways to make Read only fields in SharePoint:

1. Using PowerShell to set ShharePoint column read only.

2. Using jQuery/Javascript to make read only fields

3. Using SharePoint Designer to make SharePoint list field read only.

http://www.sharepointdiary.com/2013/07/how-to-make-sharepoint-list-column-form-field-read-only.html#ixzz2aGyDVMQS

on Nov 26, 2014

Your "second approach" sounds like it might be just what we need. Can you provide more detail or an example of how it would actually be done? We are using Sharepoint Foundation 2013.

on May 20, 2015

I often like to use multiple lists and workflows between them to update one list with the master record. List 1 could update fields a, b, and c while list 2 could update fields d, e, and f. A third list could be the basis to create the record on the master list. Using the lookups, you can see the other columns but not update them. People only get permission to update the columns they need to by restricting them on the list they are responsible to update. It works well for HR functions.

on Jul 22, 2016

I developed a farm solution that restricts edit access to the entire record based on a column value. Not really column level security, but it does help in some scenarios where you want a document locked depending upon its metadata values.

Search for:
rrfreeman blogspot restricted-edit-event-receiver

Please or Register to post comments.

What's Dan Holme's Viewpoint on SharePoint Blog?

SharePoint expert Dan Holme shares tips, how-to's, ideas, and news about all things SharePoint, and more.

Contributors

Dan Holme

Dan Holme's 18 years of experience and his impact on hundreds of thousands of IT professionals and business decision makers have earned him a reputation as one of the world's most respected...
IdeaXchange

Come join the IdeaXchange conversation!

Read the latest from our Xperts, and make your voice heard.

Want to learn more? Check out the FAQs.

eBooks For You
Join the Conversation
Blog Archive

Sponsored Introduction Continue on to (or wait seconds) ×