Newer Version Available
Controlling Access to Records
By setting object and field-level access permissions in our profiles and permission sets, we have effectively defined all of the objects and fields that any one of our Recruiting app users can access. In this section, we'll focus on setting permissions for the actual records themselves. Should our users have open access to every record, or just a subset? If it's a subset, what rules should determine whether the user can access them? We'll use a variety of platform security and sharing tools to address these questions and make sure we get it right.