cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Add more granular control options on Runtime Permissions for System User

Add more granular control options on Runtime Permissions for System User

Currently the System User can be allowed Visibilty/Runtime(ServiceInvoke) permissions to allow any user to invoke that service from within 'another' service for which the user does have ServiceInvoke permissions.

The suggested enhancement would be to be able to specify in the runtime permissions which users/groups could run that service as System User, and/or from within which other [Entity].service(s) that service is allowed to be invoked.

2 Comments
geva
14-Alexandrite

Great suggestion.

 

Perhaps a way to look at this could be having auto-generated system users for various Organisations.  This would allow specifying system users privileges and functionality but at the org level instead of system wide.

olivierlp
Community Manager
Status changed to: No Plans to Implement

If I understand the use case here, this can likely be achieved by allowing System User to invoke a service, and denying the user(s)/group(s) the permission to invoke that service.