We have a requirement in hand where we are want to assign a task to a parent group, but only allow certain sub-groups to accept the task and act on it.
For example, if a task gets Assigned to Parent Group, members of Sub-Group 2 and Sub-Group 3 should be able to see the task but only members of Sub-Group 1 should be able to Accept the task and edit/act on the task.
We gave Sub-Group 2 and Sub-Group 3 Deny access in Process model security, still if shared the URL of the task, they are able to accept it.
Discussion posts and replies are publicly visible
amyw I guess arjunm922 dont want Group 2 & 3 users to accept the task. Else, Read only approach is the right solution I can say.
The issue with generating two separate tasks is that it would generate two separate task IDs. These tasks would be displayed in an embedded interface, listing two separate tasks which is not what the end user wants.