Table "Expanded Permission"
Virtual table that provides an expanded, flattened view of all effective permissions across the system.
Remarks
This table combines and expands permission sets to show the complete set of effective permissions for objects, resolving inheritance and aggregation from multiple permission sets. Essential for security analysis, compliance auditing, and understanding the actual permissions granted to users. Used by security tools to provide a view of object-level permissions across all applications and scopes. The table includes both system and tenant scope permissions with detailed permission levels and security filters.
Properties
| Name | Value |
|---|---|
| Caption | Expanded Permission |
| DataPerCompany | False |
| Scope | Cloud |
Fields
| Name | Type | Description |
|---|---|---|
| "App ID" | Guid | The application ID that defines this permission. |
| "Role ID" | Code[30] | The role ID of the permission set that contains this permission. |
| "Role Name" | Text[30] | The display name of the permission set that contains this permission. |
| "Object Type" | Option | The type of AL object that this permission applies to. |
| "Object ID" | Integer | The ID of the specific object that this permission applies to. |
| "Object Name" | Text[249] | The display name or caption of the object that this permission applies to. |
| "Read Permission" | Option | The effective read permission level for this object (blank, Yes, or Indirect). |
| "Insert Permission" | Option | The effective insert permission level for this object (blank, Yes, or Indirect). |
| "Modify Permission" | Option | The effective modify permission level for this object (blank, Yes, or Indirect). |
| "Delete Permission" | Option | The effective delete permission level for this object (blank, Yes, or Indirect). |
| "Execute Permission" | Option | The effective execute permission level for this object (blank, Yes, or Indirect). |
| "Security Filter" | TableFilter | The security filter that restricts access to specific records within the object. |
| "AL Object Name" | Text[30] | The AL object name as defined in the source code. |
| Scope | Option | The scope level where this permission is defined (System or Tenant). |
| SystemId | Guid | |
| SystemCreatedAt | DateTime | |
| SystemCreatedBy | Guid | |
| SystemModifiedAt | DateTime | |
| SystemModifiedBy | Guid | |
| SystemRowVersion | BigInteger |