Process Model Security

Question

Why process model does not inherit security from their parent folder? 
 
 Regards, 
 Priyanka

Malathi · Accepted Answer

Hi Priyanka, 
 
 My understanding is, 
 
 One Application Process Model Folder could have various processes which do various actions for the particular application. 
 Eg, ABC Process Model Folder could have, 
 - Process to Initiate a Request with specific group security 
 - Process to update/ Clone/withdraw/Cancel Request with specific group security 
 So, in order to not set it with the default security which may lead to security issues, Appian is providing an option to set it every time we create.

Peter Lewis · Answer

Also keep in mind that the security paradigm for things like Rules / Documents is much different than for a Process Model. For rules it's pretty safe to have the objects inside inherit the security because they only affect components that would be used within the Appian Designer. However for a Process Model, these are objects that end users can invoke so the security is much more important - it's crucial that each process model has security explicitly defined to ensure processes aren't accidentally available to users who shouldn't view them. 
 In addition, you'll notice that the security roles for Process Model folders and Process Models isn't the same. PM Folders have Viewer, Editor, Admin, while Process Models also have Initiator and Manager. So, from a practical standpoint as currently designed, it would be impossible for process models to inherit security because the roles aren't the same.

Process Model Security

Top Replies