• Replies 4 replies
  • Subscribers 10 subscribers
  • Views 6862 views
  • Users 0 members are here
Options
Related

Set permissions from workflow to assignee(s)

Henrik Olesen
Offline
Hi All I have a challenge I hope someone is able to help me solve. It's a general issue we have, it's not related to a specific solution. Example: On our ECR process we would like only the current assignee(s) to be able to edit the item. Does anyone know how this could be achieved? I was considering using a method to set current assignee to by instance the owner property on the itemtype and execute this method from the workflow on activate. I would then add the owner to the permissions to grant edit permissions. This would probably work if the current assignee was only one identity but it can be several. Any suggestions? From my point of view it must be an issue others are struggling with as well. Kind Regards Henrik Olesen Kamstrup A/S Denmark
  • Offline
    I think the idea you have is good. I would investigate if claiming a task in the in basket triggers the update event on the workflow activity. If so you can then link you method to this event, you would then make sure that you have only one person assigned. As long as no-one claims the task, you keep the owner empty. Makes sense?
  • Offline
    Hi Yoann Your point makes sense but the issue is we don't use the claim functionality. If we did your suggestion would work. We have scenarios where an activity is assigned to, by instance, 2 identities. They have 50% voting weight and today the don't claim the task. They just open, perhaps edit a field on the form and then votes. In this example I need to give both assigned read/write access and only those 2 identities. I hope it makes sense.
  • Offline
    And each of these identities can be a group, right? So we can't know who is the exact assignee, would you provide the access right to the group? using a private permission for example?
  • Offline
    Yes, you are right each of them can be a group. I would prefer providing the access rights to the group but I just don't know how to do it. Assignees could also be two identities (groups). By instance approval by Sourcing and Production with voting weight 50 for each group. In that specific activity I would like to only grant users in Sourcing and Production identities edit access. I have never used private permissions so I don't know if that could be an option.