We are trying to allow the following restriction for an employee (Employee A) who is also a Leave Approver :
For Leave Application : Can view his own (Employee A), can view Employee B who reports to him.
For Salary Slip : Can view only his own (Employee A).
Thus, when we are assigning restrictions at the Role Permission Manager,
For Leave Application, for the role of Leave Approver, Apply User Permissions → If Employee is permitted
For Salary Slip, for the role of Employee, Apply User Permissions → If Employee is permitted
and under User Permission Manager,
For the user Employee A, he is restricted to Employee A (himself) and Employee B (employee who reports to him)
However, since employee is permitted to be view Employee B, he is able to view his Salary Slip as well. We only want Employee A to view Employee B’s Leave Application, not Employee B’s Salary Slip and other Employee B transactions.
Kindly advice or do feel free to inquire if further elaboration is required.
As per the default permission, access of Employee role is restricted based on “Employee” field. Please check permission for the Salary Slip is configured as mentioned in the screenshot.
And if I set Apply User Permissions at Salary Slip and set to Employee Doctype like you had shown, would’nt that mean Employee A can view Employee B’s Salary slip as well.
Thank you for your patience in helping us understand.
