It is possible to create SecurityRole that remove the access to a set of fields of a given resource, both in read and write mode.

For example it is possible to create a role that remove the access to the voyageResult field of the Voyage resource

All the users that will have such role, in the response of the Voyage resource, the field voyageResult will be not present.

POST: http://dataloy.com/ws/rest/SecurityRole

{
    "roleName": "VoyageResult",
    "attributeForbiddens": [
        {
            "objectName": "Voyage",
            "attributeName": "voyageResult",
            "read": true,
            "write": true
             
        }
  ]
}