Prerequisites
- Access to the data model YAML file for your project
- Administration > Nextedy Powersheet > Data Models permissions to edit configurations
- Basic familiarity with the data model entity type structure
Set Property-Level Permissions
Property-level permissions control whether individual fields on an entity type are visible or editable. Configure thereadable and updatable flags on each property in your data model.
Step 1: Open Your Data Model
Navigate to Administration > Nextedy Powersheet > Data Models and open the YAML file for your project.Step 2: Add Permission Flags to Properties
For each property where you want to restrict access, addreadable and updatable flags:
Step 3: Save and Reload
Save the data model file. Users need to reload any open Powersheet pages to pick up the updated permission settings.Configure Administration Access
Powersheet separates administration permissions into two scopes: document configuration and data model configuration. Each scope has independent read and write flags.document.admin.read but without document.admin.write can view the sheet configuration YAML but cannot save changes. The same applies independently to data model configuration.
Enable Sheet-Level Read-Only Mode
The entire sheet can be set to read-only using theisReadOnly property in the sheet configuration. This prevents all editing regardless of individual property permissions.
Step 1: Open Your Sheet Configuration
Navigate to Administration > Nextedy Powersheet > Sheet Configurations and open the YAML file assigned to your document.Step 2: Set the Read-Only Flag
AddisReadOnly: true at the root level of your configuration:
Restrict Individual Columns
Beyond property-level permissions in the data model, you can also enforce read-only on specific columns in the sheet configuration using theisReadOnly column property:
updatable flag applies globally across all sheets, while the column-level isReadOnly applies only to the specific sheet configuration.
Configure Navigation Property Permissions
Relationships in the data model define navigation properties usingdirect and back directions. Each direction can carry its own permission settings, independent of the target entity type:
direct navigation property (from source to target) and back navigation property (from target to source) can each have permission settings that control whether users can traverse and modify the relationship from that direction.
Navigation property permissions are under active development. The exact flags and their behavior may change. Test permission settings in a non-production project before deploying.
Combine Permission Layers
A practical configuration combines multiple permission layers. Here is a complete example that restricts aSystemRequirement entity so that severity is visible but not editable, and internalNotes is completely hidden:
titleanddescriptionare fully editableseverityis visible but cannot be changed (enforced by bothupdatable: falsein the model andisReadOnly: truein the sheet)internalNotesnever appears becausereadable: falseprevents it from being loaded- The linked user needs column is displayed but cannot be modified in this particular sheet view
Verify Your Configuration
After saving your data model and sheet configuration changes:- Open the Powersheet page as a regular user (not an administrator)
- Verify that columns with
updatable: falseappear greyed out and reject edits - Verify that properties with
readable: falsedo not appear in the sheet at all - If
isReadOnly: trueis set on the sheet, confirm that no cells are editable - Check that administration panels respect the
document.adminandmodel.adminpermission flags
See Also
- Configure Read-Only Column — column-level
isReadOnlyusage - Set Entity Permissions — data model property permission reference
- Add a Custom Property — adding properties to entity types
- Install and Manage License — license status and its effect on access
- Manage Global Configuration — global vs project-level configuration scope