I have a query where I have defined operations for add, edit, delete, and view.
I have an access level defined for Employee, which sets read only access on several objects. When I log in as an an Employee, Aware IM is smart enough to not display the edit and delete operations, without having to explicitly define accessibility on those operations. However, the add (create object) operation still displays, so that in my opinion is a bug. It does not allow the Employee to type anything into the form columns, but it should disappear from view, as the other operations do, (except the view operation).
In order to guard that add operation from displaying, I have to define accessibility as:
LoggedInSystemUser.AccessLevel='TenantAdmin'
Then the operation does not display.