Hello Reltio Community,
I am facing a significant issue where the security permissions I've configured in my tenant are not behaving as expected, specifically regarding Data Change Requests (DCRs) for the Employee entity. I have a requirement where I need to create a role who can only see employee entity and suggest a change for it. I have created a BPG_Employee_Read role for it and its working as expected but I have also created another role BPG_Employee_Approver which can only see employee data and can approve/reject the DCRs raised by the previous user, somehow this user is able to see the DCR in inbox but unable to take any action on it. I have added the other workflow related roles(ROLE_WORKFLOW, ROLE_REVIEWER,ACCEPT_CHANGE_REQUEST) to the user having this BPG_Employee_Approver from the user management but still the user is not able to approve the DCR. Can someone please help me with this?
Below is the permission json config change for this -
{
"uri": "configuration/entityTypes/Employee",
"permissions": [
{
"role": "BPG_Employee_Approver",
"access": [
"UPDATE",
"MERGE",
"ACCEPT_CHANGE_REQUEST"
]
},
{
"role": "ROLE_REVIEWER",
"access": [
"READ",
"ACCEPT_CHANGE_REQUEST"
]
},
{
"role": "BPG_Employee_Read",
"access": [
"READ"
]
},
{
"role": "ROLE_INITIATE_CHANGE_REQUEST",
"access": [
"READ",
"INITIATE_CHANGE_REQUEST"
]
},
{
"role": "ROLE_WORKFLOW",
"access": [
"READ",
"ACCEPT_CHANGE_REQUEST"
]
}
]
},
------------------------------
Atharva Ruikar
Blue Altair
------------------------------