Taskana allows for a fine grained access control to workbasketsWorkbaskets. This is done by maintaining an access control list for each workbasketWorkbasket. An access control list item grants a set of permissions to an access id (JAAS principial, user or group).
The following permissions are available:
Permission | Meaning |
|---|---|
READ | Read or query |
Workbasket metadata. |
the Workbasket. | |
READTASKS | Allows user to read or query metadata of Tasks without explicitly specifying Workbasket in the query. |
OPEN | The user is allowed to explicitly query the |
Tasks of specific Workbaskets. If a user does not have the OPEN permission, he cannot query/filter Tasks by Workbaskets. | |
EDITTASKS | Allows the user to update, claim or complete tasks. For editing, READ and READTASKS permissions are also required. |
APPEND | The user is allowed to append a |
Task to the |
Workbasket. This applies to creation of |
Tasks in this |
Workbasket as well as for transferring |
Tasks to this |
Workbasket. | |
TRANSFER | Allows the user to transfer |
Tasks from this |
Workbasket to another one. | |
DISTRIBUTE | The user is allowed to distribute |
Tasks from this |
Workbasket to the configured distribution targets. For distribution the APPEND and TRANSFER permissions are checked also. | |
CUSTOM_1 .. CUSTOM_12 | Permissions to be used in custom code to configure application specific scenarios which are not directly checked by TASKANA. |