Configuration of ACLs rules on Approved status and Draft status

In draft status Revise icon is missing

Hi @FC_9723361 

It would be nice to see your OIR configuration.

There are more rules for controlling the revision action then just ACL definition

I am not sure if you can control the revise action directly from the OIR .

- I guess that you have to have correct LifeCycle Template configuration, where the revise transaction is allowed,

- then ACL create has to be granted to the user in the target state where the new revision will be placed

- check the profile configuration if you use profiles.

PetrH

My business requirement is:

if the epm document is "Approved" Revise icon should be hidden

if the epm document is in "Draft" Revise icon should be visible.

Now is set in this way by acl rules, but in "draft" status Revise icon is hidden however

Tests you can do: Add "&jcaDebug=true" to the end of the URL on the EPMDocument page you are viewing in Draft. You will see a bunch of lady bugs appear. Click the actions drop down and see why the action is being disabled. It should say the validator or filter that disabled it.

Second, in the policy administrator, there is a "View Access Control Lists" where you can see a summary of the ACLS by object and state. See if something is off there, perhaps by user groups or deny rights.

Lastly, we should check the lifecycle template for your EPMDocument. Do you have Revise checked? This is showing its allowed in my In Work state but my ACLs only allows admin to do that.

Hello in attached debug, list acl rules and lifecycle. Seems to be right.

Perhaps in debug we should know what the problem is

Hi @FC_9723361 

This ACL definition is ok, but you do not know if there are not any others definitions that could involve the results.

So go to the EPMDocument in the draft state, and use a Edit Access Control 

Go to the detail info and check the ACL results and share the screen shot.

PetrH

As you thought revise is not checked in draf

Hi @FC_9723361 

Go to the detail of the row by the I icon.

You will see where the ACLs are defined.... 

PS> be careful with Deny usage. 

Absolute deny rule on any domain level will not allow to use the revise function even though it is allowed on a lower domain level

Deny rule can be rewritten on the lower domain level but if the Deny rule and Allow rule is on the same level, the Deny rule is applied. 

Keep this rules in your mind.

PetrH

Now revise is able in details, but is always unchecked 

Hi @FC_9723361 

As I see your ACL rules are set directly on the User

I can not see all the rules defined please slide to the left to see the end of the row

The result is clear. You do not have granted access to the Revise

Check the Lifecycle Access control

it seams that somewhere the access is denied

PetrH

For the author revise is available, but if it is not the author ma only the modifier ? Should be this the problem?