Setting a privilege to secure an activity
To secure an activity, determine the correct privilege, then assign that privilege to the role that is authorized to run that activity.
In this example, an activity is needed that gives a user the ability to reopen a case.
For information about privileges in standard Role Name rules in Pega Infinity, see Standard privileges in Securing an activity.
Determine which access roles should and should not have the ability to run the activity.
- To view the access role, in the panel of Dev Studio, click your Role Name in the
list.In this example, your Role Name would be ApplicationName:User.
. Then, select
- In this example, users with the role PegaRULES:User4 should have the ability to update cases but not to reopen them.
- Users with the PegaRULES:WorkMgr4 role should have the ability to both update cases and reopen them.
- To view the access role, in the panel of Dev Studio, click your Role Name in the list.
In the Privileges column, choose the privilege that describes the action you need to take that is available for this role but not available for other roles.If you are building a Component or Application reuse layer, adding new privileges could cause compatibility issues with upgrades, because it is possible to create a role name by using the Clone from feature instead of using role dependencies. When you add new privileges you must document this in upgrade instructions because those cloned roles will not inherit the new privilege after an upgrade.In this example, there is an existing privilege called WorkReopen near the bottom of the PegaRULES:WorkMgr4 role.
In the same row, in the first column, note the class that is associated with that privilege.In this example, the class is Work-.
Open your activity rule form, and enter the privilege class and name, for example:
When an activity has multiple privileges listed, the user needs at least one of the privileges to be granted access.
- Privilege Class: Work-
- Privilege Name: WorkReopen