Posted: 25 Jun 2020 12:17 EDT Last activity: 27 Jun 2020 2:26 EDT
Access Group classification in DevOps
We are using DevOps for our application deployments. When an AppAdmin user starts a deployment with PegaDeploymentManager:Administrators access group/access role. For Manual tasks(approvals) in the pipeline model any user who has access to pipe line is able to approve the task. We only have 2 accessgroups Healthcheck and administrator in PegaDeploymentManager application and each of these got adminstrator access roles.
If we want to restrict the users from approving the manual tasks which are not assigned to them we need new access groups. Can someone provide some information on this. This would be of great help for us.
Deployment manager does not use the access group/access roles to control access, instead you could create a new deployment manager role with no privilege to approve and have that role assigned to users who should not be able to approve tasks. Having said that, there is no option to prevent users who have access to the pipeline with approve privilege from not approving tasks which are not assigned to them.
The option of assigning the approval task to a work basket instead of individual user is on the road map. And you could use this to assign tasks to different work baskets. But unfortunately no timeline on when this feature will be available yet.