Process Model Security

RE: Process Model Security

Priyanka Agarwal — Tue, 17 Aug 2021 13:43:24 GMT

RE: Process Model Security

Priyanka Agarwal — Tue, 17 Aug 2021 13:41:14 GMT

RE: Process Model Security

Peter Lewis — Thu, 12 Aug 2021 15:45:03 GMT

Also keep in mind that the security paradigm for things like Rules / Documents is much different than for a Process Model. For rules it's pretty safe to have the objects inside inherit the security because they only affect components that would be used within the Appian Designer. However for a Process Model, these are objects that end users can invoke so the security is much more important - it's crucial that each process model has security explicitly defined to ensure processes aren't accidentally available to users who shouldn't view them.

In addition, you'll notice that the security roles for Process Model folders and Process Models isn't the same. PM Folders have Viewer, Editor, Admin, while Process Models also have Initiator and Manager. So, from a practical standpoint as currently designed, it would be impossible for process models to inherit security because the roles aren't the same.

RE: Process Model Security

Malathi — Thu, 12 Aug 2021 05:22:27 GMT

Hi Priyanka,

My understanding is,

One Application Process Model Folder could have various processes which do various actions for the particular application.

Eg, ABC Process Model Folder could have,

- Process to Initiate a Request with specific group security

- Process to update/ Clone/withdraw/Cancel Request with specific group security

So, in order to not set it with the default security which may lead to security issues, Appian is providing an option to set it every time we create.