we are using the service desk towards our customers.
Basically we have to sets of roles: one for consultants (ourselves) and one for our customers.
Our customers are entering the service desk through a web-interface.
If the consultants enters the web-interface, they can see reports and queries to the left, and they can open and edit tickets.
If the customers enters the web-interface, they cannot see queries and reports in the left navigation bar, and they can not open and edit tickets.
Now we need a third possibility:
A customer need to open and edit tickets, but they should not be allowed to define (or even execute) queries.
Because when they can define queries, they get access to see all other customers tickets. And that is not good.
How to obtain this?
Thanks a lot in advance.