Defect #3361
closedMissing "Requested for" in role approval task for tech. account
100%
Description
Approval by manager:
Approval the role assignment by the guarantee:
the account name is displayed but the link is not working - /idm/#/account/undefined/detail
Approval the role assignment by security department
the account name is displayed but the link is not working
Files
Updated by Peter Štrunc 11 months ago
- Status changed from In Progress to Needs feedback
- Assignee changed from Peter Štrunc to Ondřej Kopr
- % Done changed from 0 to 80
https://github.com/bcvsolutions/technical-accounts/pull/4
There were multiple issues:
- Not displaying technical account info in requests was fixed in #3366
- The link to an account was sometimes not correctly rendered. This is now fixed
- Role approval for each role by criticality is now delegated to admin role holders in case no technical account guarantee is found. This previously resulted in error and inability to approve preceding role requests.
@kopro could you check it out, please?
Updated by Alena Peterová 11 months ago
- File approval_criticality_1_admin.png approval_criticality_1_admin.png added
- File approval_by_manager_is_assigned_even_to_admin.png approval_by_manager_is_assigned_even_to_admin.png added
- Status changed from Needs feedback to In Progress
- Assignee changed from Ondřej Kopr to Peter Štrunc
I tested it and I computing the managers for approval was sometimes incorrect. It depends on the permissions of the logged user, who approves the previous task. If they don't have read on technical account guarantors (or something like that), the approval task is created to super admins and not to the account's guarantor.
I think that it shouldn't depend on such permissions - could you please check it? @sourek
- Product "helpdeskRole" + added permissions: Technical account (TechnicalAccount) - View in select box (autocomplete) - BasePermissionEvaluator
- idm.sec.core.wf.approval.helpdesk.enabled=true
idm.sec.core.wf.approval.helpdesk.role=helpdeskRole
idm.sec.core.wf.approval.manager.enabled=true - The requested role has criticality 1.
- The technical account has some guarantor
- Both tasks for managers were in some cases assigned to super admin(s)