Restricted User Security

Is there still an idea/plan or timeline to allow a restricted user to be tagged/related to an employee, customer or supplier and/or division so that if assigned a function such as expense reports, customer portal etc. they would be limited to access only for the associated party?