AnsweredAssumed Answered

How to Prevent Role Owners from Adding New Members to Their Roles?

Question asked by Ece YILDIRIM on Jun 18, 2016
Latest reply on Jun 21, 2016 by Ece YILDIRIM

Hello,

 

We need to prevent role owners from adding new members for their roles via standard Role Page.

 

 

For this purpose we tried to leverage on SecurityContext file functionality of VIA. However we could not decide which is the correct action to set in custom SecurityContext.csv that would enable Role Owners to

- change entitlements and meta data

- not to add/remove members from role

 

There is “Edit Entitlements” attribute but this does not provide privileges to modify role attributes.

 

 

Moreover, when we try to upload securityContext.csv file with below data we get warning “invalid action”. What are we doing wrong?

 

SECURE_OBJECT_TYPE,NAME,ACTION,IMPLICIT_HAS_QUERY,IMPLICIT_BS_CHANGE,IMPLICIT_BU_CHANGE,SCOPE_TABLE,SCOPE_FILTER

Role,Owner,Edit Entitlements,scope,,,t_av_roles,owner_id=${id}

 

 

Any one has any idea?

Can we achieve required behavior with SecurityContext files? How?

Outcomes