I have an application in which their are two possible roles: “Requester” and “Approver”
When a requester puts in an order, the initial value of PENDING is set in the Approval Status field .
There are two other values: APPROVED and DENIED
I am trying to formulate and an access group or a role permission that does not allow the Requester role to modify the Approval Status field from PENDING. (An “Approver” doesn’t not have any such constraints)
The problem is I cannot set the approval status field to READ ONLY for the “Requester” role, because then the user will receive an error that the value cannot be set to NULL (it is not NULL, since ‘PENDING’ is set as an initial value)
Is there any best practice for handling this situation?
Initial Value is set for field, certain users should not be able to modify field from that value.