Access to the LocalBusinessProcess or the BusinessProcess interface does not guarantee that the caller can perform all actions on an activity; the caller must also be authorized to perform the request. The following minimum authorization authorities are needed for activity requests:
Request | Required authorization |
---|---|
createMessage | activity reader or process reader |
getActivityInstance | activity reader or process reader |
getCustomAttribute | activity reader or process reader |
getFaultMessage | activity reader or process reader |
getFaultTerminalNames | activity reader or process reader |
getInputMessage | activity reader or process reader |
getOutputMessage | activity reader or process reader |
getOutputTerminalNames | activity reader or process reader |
getUserInput | activity reader or process reader |
getUISettings | activity reader or process reader |
setCustomAttribute | activity editor or process administrator |
setOutputMessage | activity editor or process administrator |
setFaultMessage | activity editor or process administrator |
setUserInput | activity editor or process administrator |
claim | potential activity owner or process administrator |
sendEvent | potential activity owner or process administrator |
cancelClaim | activity owner or process administrator |
complete | activity owner or process administrator |
forceRetry | process administrator |
forceComplete | process administrator |