In CiviCRM I have following categories of individuals that is relevant to permissions they would have in the system:
- manager
- team lead
- sales
- customer
Each of these individuals are belonging to one and only one country, and each country has one and only one manager.
1: Custom ACL
- A user logged in as a manager can create contacts of types team lead, sales and customer for the country he is responsible for.
- A lead can create sales contacts only. And they will belong to the same country, he is operating in.
- Sales and customers aren't allowed to create any contacts.
- Managers, team leads, sales cannot see contacts from other countries.
2: I would like to synch whenever a CiviCRM contact is created it creates a Drupal user and assigns the roles: manager, team lead, sales, customer.
3 vice versa to #2. This way it seems to work fine.
I could auto assign roles that corresponds to CiviCRM groups.
Before I am jumping into API docs and try writing a custom module to solve both SYNC and ACL problem as above, I'd like to ask the more experienced CiviCRM developers first if there is already a solution provided by the community or an elegant configuration practice that I missed somewhere between the guide. It seems rules can't do this in a simple way from.