Taskana allows for a fine grained access control to workbaskets. This is done by maintaining an access control list for each workbasket. An access control list item grants a set of permissions to an access id (JAAS principial, user or group).
The following permissions are available:
| Permission | Meaning |
|---|---|
| READ | Read or query workbasket metadata. If a user does not have the READ permission, he does not even know about the existence of the workbasket. |
| OPEN | The user is allowed to query the tasks of the workbasket (the content). |
| APPEND | The user is allowed to append a task to the workbasket. This applies to creation of tasks in this workbasket as well as for transferring tasks to this workbasket. |
| TRANSFER | Allows the user to transfer tasks from this workbasket to another one. |
| DISTRIBUTE | The user is allowed to distribute tasks from this workbasket to the configured distribution targets. For distribution the APPEND and TRANSFER permissions are checked also. |
| CUSTOM_1 .. CUSTOM_12 | Permissions to be used in custom code to configure application specific scenarios which are not directly checked by TASKANA. |