Is it possible to damage books with an extension?

chrmrnchrmrn Posts: 12Member
Yes, it is!

Try to publish and run that:

codeunit 50112 DeleteGLE
{
procedure OnRun();
var
gle: Record "G/L Entry";
begin
Message('this will delete 1st G/L Entry');
gle.FindFirst();
gle.Delete();
end;
}

This works at current BC Spring Release.
As you can see no permission to G/L Entry was granted.
Any idea why it is wrong?

Answers

  • TallyHoTallyHo Posts: 295Member
    Are you sure the servicetier is running under a customer license? If so, this is quite troublesome.
  • chrmrnchrmrn Posts: 12Member
    It is MS SaaS cloud
  • TallyHoTallyHo Posts: 295Member
    I know Oracle based ERP that allows it all. 'Safe zones' do not exist in the database. Maybe MS is just letting go.
  • chrmrnchrmrn Posts: 12Member
    This is illegal in some countries. The system will not be validated.
  • TallyHoTallyHo Posts: 295Member
    edited 2019-06-21
    Auditors know the ease a GL record can be deleted using a simple SQL statement (embedded in AL).
    But I'm sure you're right. Some might be very strict on that. And with the saas environments on the rise this could be implemented like brick again. But on premise..

  • chrmrnchrmrn Posts: 12Member
    edited 2019-06-21
    This makes Indirect Access Permissions nonsense!
  • TallyHoTallyHo Posts: 295Member
    No, this makes forced permissions by MS nonsense. Permissions are very much needed (direct and indirect), but can be fully controlled by the customer.
Sign In or Register to comment.