Workbasket Permissions

Taskana allows for a fine grained access control to Workbaskets. This is done by maintaining an access control list for each Workbasket. An access control list item grants a set of permissions to an access id (JAAS principial, user or group).

The following permissions are available:

Permission	Meaning

Permission	Meaning
READ	Read or query Workbasket metadata. If a user does not have the READ permission, he does not even know about the existence of the Workbasket.
READTASKS	Allows user to read or query metadata of Tasks without explicitly specifying Workbasket in the query. If a user does not have the READTASKS permission, he cannot see the Tasks in the Workbasket. For reading tasks metadata, READ permission is also required.
OPEN	The user is allowed to explicitly query the Tasks of specific Workbaskets. If a user does not have the OPEN permission, he cannot query/filter Tasks by Workbaskets. For explicit query, READ and READTASKS permissions are also required.
EDITTASKS	Allows the user to update, claim or complete tasks. For editing, READ and READTASKS permissions are also required.
APPEND	The user is allowed to append a Task to the Workbasket. This applies to creation of Tasks in this Workbasket as well as for transferring Tasks to this Workbasket.
TRANSFER	Allows the user to transfer Tasks from this Workbasket to another one.
DISTRIBUTE	The user is allowed to distribute Tasks from this Workbasket to the configured distribution targets. For distribution the APPEND and TRANSFER permissions are checked also.
CUSTOM_1 .. CUSTOM_12	Permissions to be used in custom code to configure application specific scenarios which are not directly checked by TASKANA.