Hi all,
We’re running ERPNext in a multi-company scenario:
- Parent Company – acts as the system administrator
- Subsidiary Companies – each should operate completely independently
Our goals are:
- Company-wise data isolation
- Customers, Sales Invoices, CRM data, reports, etc. must remain visible only to the company they belong to.
- Users of Subsidiary A should never see or edit records of Subsidiary B (and vice-versa).
- Separate Shopify integrations
- Each subsidiary has its own Shopify store.
- At the moment ERPNext allows only one set of Shopify credentials, so all incoming data (customer groups, orders, products) is shared across companies.
- We need every subsidiary to connect to its own Shopify store with its own API keys, without exposing those records to the other companies.
- Single code-base, role-based control
- Core ERPNext and the Shopify connector should be installed and patched once, but permissions and data flow must respect company boundaries.
Questions
- What is the recommended way to enforce strict company-wise permissions across all doctypes (Customers, Sales Invoices, CRM, etc.)?
- Has anyone configured separate Shopify credentials per company, or is there a roadmap/patch that supports this?
- Are there best practices or custom apps/hooks we should look at to keep integrations, records, and user roles completely independent for each company?
Thanks in advance for any pointers or real-world examples!