Limit write access to work item only for "owned by"
I am using RTC 3.0.1.1.
I can restrict write access of a work item for a particular project role. How to restrict write access (to all attribute) based on Owned-By attribute. None other than owned-by should not be able to edit the work item. - Chidambaram ALM Consultant |
3 answers
Hi Chidambaram,
You should be able to write a custom precondition and use the "Read-only Attributes for Condition" precondition to get the desired effect. See https://jazz.net/library/article/997/#dyncondition for more information. Comments Lauren, there is one issue I was not able to solve yet. I can't get the UUID or name of the current user. If I could get that,it would be possible to create the condition in way that it checks the type and returns true only for the attributes and the type.
Hi Ralph,
Ralph Schoon
commented Nov 05 '12, 8:55 a.m.
| edited Nov 05 '12, 8:56 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
Lauren, I will try to get more information on this, since it is really not an uncommon question.
Hi Ralph,
|
Ralph Schoon (63.4k●3●36●46)
| answered Nov 05 '12, 7:45 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
The only option that might work that I see right now is a java based Advisor.
Script based would not work even in 4.0 since you can't access the user ID of the current user. At least I am not aware how to do that. Script based would also work across all work items. In an Advisor you could probably check individually for work item types etc. Comments @rschoon, My original question on write restriction to the owned-by is still valid. But I was looking at other methods of restricting the visibility.
It might make sense to split the questions into two topics, because visibility is a completely different matter and can get quite complex. Visibility has also consequences as it is impossible to save for a category that you can not see. So it is necessary to have a process to move work items across teams.
@rschoon, Agreed, they are not role based.
|
Geoffrey Clemm (30.1k●3●30●35)
| answered Nov 05 '12, 3:49 p.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER edited Nov 05 '12, 3:52 p.m.
You probably are interested in the functionality requested by work item Add special "owner" and "creator" roles, that specifies what the "owner" and "creator" respectively of an object can do to the object (88779) . If this is the kind of thing you had in mind, please feel free to add a comment to that work item indicating your interest/support.
Comments
Jason Lin
commented May 19 '14, 1:07 p.m.
This function is very important to all users, but I can't understand why it hasn't on enhancement list even this RFE created by 2009.
|
Your answer
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.
Comments
This feature was available in Rational Change. Rational Change 5.0 provides a rule based access restrictions where rules to define read/write access of Work Item. Rules can be defined based on combination of attributes values. Read / write access is given to individuals or LDAP groups. This is used to restrict visibility of work items of one team / vendor to another. This can also be used to prevent editing of work items except the owner.
RTC's feature of restricting read access of work items tagged to particular Work Item Category provides a similar solution. In addition to that Access Group introduced in RTC 4.0 is also helpful.
You asked specifically for RTC and you asked specifically for based on the owner attribute. You did not ask for no visibility.
I don't think the LDAP approach is a solution. Access groups also restrict access completely. So, currently I am not convinced that your original question can be answered.