Jonathan Edwards (edwaj)
Senior System Architect
Pegasystems Inc.
edwaj Member since 2012 6 posts
Posted: December 20, 2017
Last activity: December 21, 2017
Posted: 20 Dec 2017 23:02 EST
Last activity: 21 Dec 2017 15:08 EST

Authorization - Send Email Smart Shape Attachment Security

Hi All,

I would like to add a Send Email smart shape to a flow rule, and specify an Attachment Category to include an attachment in the outbound email. There are many paths that lead to the execution of the Send Email smart shape; the shape may be executed after completion of an assignment, or after a wait shape has expired for example.

Up until this point the configuration is relatively simple and all is well. Until we apply security constraints...

To restrict access to the attachment, the Attachment Category rule security tab is updated; the "Access control list by privilege" is configured to grant varying levels of access to six different user types.

At run-time, when the Send Email smart shape is executed, an error occurs: "You are not authorized to open instance DATA-WORKATTACH-FILE". I suspect that this is because the Send Email shape is executed by a requestor that does not have a privilege defined in the "Access control list by privilege" section of the Attachment Category rule.

My question is, how can we configure our application to generate the email notification (with the attachment) in this type of scenario? e.g. the authorization settings of the user that performed the previous step, should not impact generation of the email notification with the attachment.

Thank you in advance for your help.


Case Management Security
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.