We have Request Workflow in place with automatic assignment using action macros. So far we are good, however we observe there is no security check or validation for the workflow updates. Any one can update any Request workflow regardless of the assignment status. I believe there must be an OOTB option (may be under options manager) to impose a security on Request workflow so that only assignee of the workflow can update the task.
Could someone help me to direct towards the option to impose the security.
I need to know at least, if it is possible with OOTB options.
You should set your security restriction using data partition update constraints on request workflow task table (cr_wf).
assignee = @root.id on the Workflow_Task table for the update constraints (change order)
same for R/I/P but on the cr_wf table as mentioned by Aleksandar_Stancic
Note that the table may not be present in the controlled table and you will need to add it manually
All this assuming you are using the classic workflow and not ITPAM
No luck guys. I added cr_wf object and included the data partition. But still its allowing everyone to update the Request workflow.
Arunava, what version of SDM you tried this on? I quickly did it on 17.1.01 and saw it worked. Thanks _Chi
I have 14.1 with latest cumulative patch.
Alright. My bad. Its working on the new Requests. I was trying on existing cases and it was failing. Sorry for the confusion. I am good here and a big thanks for your valuable suggestion.
Good to see is now working :)