I have an HTML page (WebResource) inside my CRM, it is visible in the site map of my model-driven app, and users access it as they do with entities.

I want to apply a Field Security Profile to its field to let only specific users modify the values: is it possible? And how?

Can I do it with/without code?