@morre maybe you could create model level a permission that you can use as an indicator to which set of fields the group can edit ?
E.g: modelname_edit_all_fields and modelname_edit_restricted_fields
And use this in your view or form to perform your checks?
(It only works if you don't need distinct restricted fields per group or user though)
@morre if you need the list of editable fields to be dynamic, another approach is to encode the list of editable fields in the permission name, e.g:
And use this in your form to dynamically exclude some fields in the init?
mastodon.eliotberriot.com is one server in the network