0
沿着這個過程我們有一個人工任務,雖然我有問題要分配它。在當前狀態下,可以將其分配給任何用戶(內部/所有人)。WSO2BPS 3.6.0 BPEL HT任務分配/授權
對於HT我有以下配置:
<htd:logicalPeopleGroups>
<htd:logicalPeopleGroup name="everybody">
<htd:documentation xml:lang="en-US">
Everybody
</htd:documentation>
<htd:parameter name="role" type="xsd:string" />
</htd:logicalPeopleGroup>
</htd:logicalPeopleGroups>
<htd:peopleAssignments>
<htd:potentialOwners>
<htd:from logicalPeopleGroup="everybody">
<htd:argument name="role">
Internal/everyone
</htd:argument>
</htd:from>
</htd:potentialOwners>
</htd:peopleAssignments>
其對當地環境的效果良好(本地userstore作爲管理員用戶訪問)。
但是 - 使用AD身份驗證部署在服務器上,我無法訪問創建的任務。
在humantask-explorer中,我可以將任務視爲「可索取」,但不能視爲「我的任務」。試圖打開任務我收到消息
訪問被拒絕。您無權執行此任務
和wso2carbon.log聲稱
ID: [-1234] [] [2017-02-18 11:05:28,100] ERROR {org.wso2.carbon.humantask.core.api.client.TaskOperationsImpl} - org
.wso2.carbon.humantask.core.engine.runtime.api.HumanTaskIllegalAccessException: Access Denied. You are not authorized
to perform this task {org.wso2.carbon.humantask.core.api.client.TaskOperationsImpl}
TID: [-1234] [] [ 11:05:28,592] ERROR {org.wso2.carbon.humantask.core.engine.commands.Claim} - The user[ex
t-admin] cannot perform [GetInput] operation as either he is in EXCLUDED_OWNERS role or he is not in task roles
[[ACTUAL_OWNER, POTENTIAL_OWNERS, BUSINESS_ADMINISTRATORS, STAKEHOLDERS, TASK_INITIATOR, NOTIFICATION_RECIPIENTS]] {o
rg.wso2.carbon.humantask.core.engine.commands.Claim}
謝謝大家的任何暗示