Enable role to add search conditions to a filter


I try to create a new role which should be able to read from an entity in the browser screen and should be able to add search conditions to the filter.
When I click on ‘add search condition’ I only see the notification: Access Denied

The specific filter settings are allowed,
also the sec$filter, …appfolder, … searchfolder settings.
I cannot find any hint in the doc which settings are needed to get it working.

Did I miss a part in the manual??


found it…
all related screens for the filter need to be allowed to the role

There is a built-in role “system-filter” in source code in 7.2, available in the role browser for assignment: