Project

General

Profile

Actions
Copy link

Defect #3249

open

User see recertification requests for indirect subordinates

Added by David Štekl almost 2 years ago. Updated almost 2 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Target version:
-
Start date:
01/27/2023
Due date:
% Done:

0%

Estimated time:
Affected versions:
2.3.0
Owner:

Description

One of the users can also see recertification requests for indirect subordinates. he should only see requests from his direct subordinates
Permission:
Role recertification - request items (RecRecertificationItem) RecertificationItemByRecertificationRequestEvaluator
Role recertification - requests (RecRecertificationRequest) RecertificationRequestByApproverEvaluator
Read
Update
Execute

We set Direct guarantees on contracted positions.
On the user tab, he can only see direct subordinates according to permissions
Users (IdmIdentity) SubordinatesEvaluator
View in select box (autocomplete),Read

We have not encountered the same problem with other users.

Actions
Copy link
 #1

Updated by David Štekl almost 2 years ago

For one of the indirect subordinate contracts, I tried the same piece of code that calculates the parent:

import eu.bcvsolutions.idm.core.api.dto.filter.IdmIdentityFilter;
import eu.bcvsolutions.idm.core.api.dto.IdmIdentityContractDto;

org.slf4j.Logger log = org.slf4j.LoggerFactory.getLogger("testmanager");

IdmIdentityContractDto contract = identityContractService.get(UUID.fromString("adasdsadsad"));;
IdmIdentityFilter subFilter = new IdmIdentityFilter();
subFilter.setManagersFor(contract.getIdentity());
subFilter.setManagersByContract(contract.getId());

def test = identityService.find(subFilter,null).getContent();

log.info("aaaaaaaaaaa" + test );

Only the direct supervisor without this user was output.

Actions
Copy link

Also available in: Atom PDF