Colin,
One option is to have workflow compose the data into a field that the
user does have access to. (So that for that record, and for the
transaction of the Submit/Modify, the user has access to the data via
an authorized path provided by workflow.)
You could also opt to convert your "Notify" action into a Push action
that manually creates a record in the AR System Email Messages form.
However I think that will require a bit more work and could offer some
distinct advantages/disadvantages too.
However, I think the only field where this is particularly problematic
is really the 'Request ID' (field 1). If you are controlling row level
access with field 1 then that is the only field that MUST NOT be
Public. The other fields might be "ok" to be Public because that would
still be restricted by the permissions on field 1.
--
Carey Matthew Black
Remedy Skilled Professional (RSP)
ARS = Action Request System(Remedy)
Love, then teach
Solution = People + Process + Tools
Fast, Accurate, Cheap.... Pick two.
On 1/30/07, Colin Love <[EMAIL PROTECTED]> wrote:
Hello,
We have recently upgraded to v7 of ARS (from v4.0!!) which was done
via a new install. Obviously lots of things have changed between the
two versions, but there is one thing I dont seem to be able to nail.
We are intending to use mid-tier to allow users to submit and review
their
own tickets, and have set up some LDAP authentication against AD for
this
and it works well utlising the submitter field. We can further use
field permissions to restrict access so the user can only see their
entries and nobody elses. This is what we want.
However, we also have notifications going out from the form in question
that go to what would be deemed public email addresses (ie dont appear
in ARS) and for the field values to work we need to open up permissions
for Public on the fields, which then breaks the user access as they can
then see all of the calls.
Is there a way of locking down permissions to allow both functions to
happen correctly, or perhaps a way for the notification to be run as
a defined user that we can assign a group permission for (instead of
Public) ?
Thanks in advance.....
Colin
------------------------------------------------------------------------
--------
Colin Love - Technical Infrastructure Manager E-Mail:
[EMAIL PROTECTED]
Senate House Services Ltd
University of London Computer Centre Telephone: 020 7692
1304
20 Guilford St., London, WC1N 1DZ. FAX: 020 7692
1234
------------------------------------------------------------------------
--------
_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the Answers
Are"
_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the Answers
Are"
