I need to create a Role that allow members to only view all the Change Requests started by some Change Request Forms with some specific names.
I can't use Requests - Monitoring Policies because it allows the Perform action on all the the visible requests and I want to avoid it.
Than, I started with SecurityContext.csv configuration, in particular:
| SECURE_OBJECT_TYPE | NAME | ACTION | IMPLICIT_HAS_QUERY | IMPLICIT_BS_CHANGE | IMPLICIT_BU_CHANGE | SCOPE_TABLE | SCOPE_FILTER | |||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
|
|
|
is it the right approach?
If yes, may you help with the value of field SCOPE_TABLE and SCOPE_FILTER?
In particular:
- is T_AV_CHANGE_REQUESTS the right table that handles the Change Request object?
- where can I find the value set of field FORM_ID of table T_AV_CHANGE_REQUESTS? I tried with select FORM_ID from WP_FORM but it seems that WP_FORM.FORM_ID has different values of T_AV_CHANGE_REQUESTS.FORM_ID.
Thanks and regards,
Gabriele.
That's because WP_FORM contains details about the form objects created for workflows, i.e. approval/activity forms. For the request forms you need to check T_AV_CRSUBMISSION_FORM.
Would be interested to know whether this works.