Private Back-Office & Private Front-Office

I need to create a

-Private Back-Office (BO) where Staff enters management costs assigned to individual Owners.

and a

-Private Front-Office (FO) where each Owner can see his own management costs.

I take it that the BO is Private and using the User Table for Login?

The FO is also Private and Owners could login maybe using an E-Mail Table?

2 questions:

How does one assure/secure that Owners can see only their own costs?

Using Row Owners?

Whilst Staff will do all CRUD operations, Owners will only look at their data, are the Owners therefore also considered Private Users or not?

PS Using Glide Tables.

Row Owners would be the secure way to restrict which data a user has access to.

Only if you have a whitelist table restricting who can sign in, or assign Role functionality to a user.

Assigning Row Owners to a table does not make a user private on its own.

You can either build everything into a single app and assign multiple row owners to each table (maybe using Roles for BO employees), or you can have separate FO and BO apps with different row ownership. Maybe no row ownership for BO employees, but use row ownership for FO users.

@Jeff_Hager Many thanks, great support!

@Jeff_Hager I managed to create 2 working samples using Row Owners.

What really bugs me is the use of E-Mail Addresses as Row Owners, if the User changes his E-Mail Address in his Profile all of his Records will become orphaned!

I tried with a copy of Row ID in both User

and Data Table

but it is not working!

Yeah, that won’t work as you have it.
The only way you could get that to work would be if you defined the RowID column in your Users table as the Role column in your User Profiles configuration. But I’m not even sure if Glide will allow that.

It does however sound like what you need is to be using Roles as Row Owners. Have a read of the below, it might help to clarify how this can be configured.