Hi All,
First, please let me preface my question so that it's clear that I'm referring to the Access Web App (2013/2016), NOT the desktop version of Access. What works easily in the desktop version is usually quite cumbersome in the web app.
I have a multi-user database running where users can only see their own records. This is done (thanks to other people on this form for helping me) by using a macro tied to the "On Load" function of the datasheet view or queries. The macro does a refresh and only displays records which have the user's ID in them. However, we've just discovered that if the user goes to the header row and clicks on the filters, they can then access all records! Has anyone figured out a way to prevent this from happening? It seems like the filters should only allow a filtration of the existing records being displayed, not the entire database.
I hope that I have not uncovered a major security flaw in the Access Web App. This type of thing could shut our entire database down if I can't figure out a workaround.
Thanks for any help