Hierarchical view access in worklist

Similar Messages

• Access Nodes Programmatically in Hierarchical Viewer

  Hi All
  Can any one tell me how to Access Nodes Programmatically in Hierarchical Viewer
  Tx

  How is the HierarchyViewer component populated (What is the data model for the HierarchyViewer)?
  What is your exact use-case/flow for your use-case?
  As the underlying data model/structure for the HierarchyViewer is exactly the same as the treetable, adding & deleting of nodes to the HierarchyViewer is exactly same as how we do for tree table.
  Thanks,
  Navaneeth

• View access denied to Reset on task definition

  Hi,
  We are facing a weird issue. We have an end user task which we trigger directly from a web page of a different application. The URL for task launch is something like this : https://mycomany.com/idmcs/user/processLaunch.jsp?id=Self+Service+Password+Reset+Registration&op_appid=csi.
  If we open a new browser window and copy paste this URL and hit enter, it takes to /user/login.jsp. We input the user credentials and submit, it triggers the task.
  But the behavior is different if we do the following:
  1. Open a browser window, access anonmain.jsp (https://mycomany.com/idmcs/user/anonmain.jsp)
  2. It routes to anonlogin.jsp (https://mycomany.com/idmcs/user/anonlogin.jsp) and asks for anononymous user name
  3. We input some junk user name submit. It takes to anonmain.jsp.
  4. Now in the same browser window if we copy past the processLaunch URL (https://mycomany.com/idmcs/user/processLaunch.jsp?id=Self+Service+Password+Reset+Registration&op_appid=csi) and click submit, it ideally should route to login.jsp.
  Instead it throws the view access denied error : "View access denied to Reset on process Self Service Password Reset Registration"
  Any idea what the issue might be?
  Thanks,
  kIDMan.

  Hi
  Normally when this happens you need to add the process "Self Service Password Reset Registration" to the End User Tasks list and Anonymous User Tasks list configuration objects.
  I dont know if this will help in your situation.
  -Mocx

• View access denied to Subject Reset on Policy

  Hi, there.
  I created a custom workflow so that anonymous user can launch the workflow, then start creating an account.
  During the workflow activity, the first form is asking user to enter the accountID of his/her choice, and the form has a validation logic to catch any conflict with the accountId policy. (for example, the accountID must be at least 4 character long)
  <Rule name='Validate String With AccountId Policy'>
  <Description>returns "true" if validation succeeded. returns error message if validation failed.
  </Description>
  <RuleArgument name='string'/>
  <block trace="true">
  <invoke name='checkStringQualityPolicy' class = 'com.waveset.ui.FormUtil'>
  <rule name='getCallerSession'/>
  <s>AccountId Policy</s>
  <ref>string</ref>
  <null/>
  <null/>
  <s>user</s>
  </invoke>
  </block>
  </Rule>
  The validation rule specified above works well if the form is used by the existing IDM admin user, however, this throws an exception when the form is used by the anonymous user.
  XPRESS <invoke> exception:
  com.waveset.util.WavesetException: Can't call method checkStringQualityPolicy on class com.waveset.ui.FormUtil
  ==> com.waveset.util.WSAuthorizationException: View access denied to Subject Reset on Policy: AccountId Policy.
  It seems like the anonymous user does not have any access right to Policy objects.
  Does anyone know how to get around this problem?
  In worst case, I can create another rule that is checking the string length, but I really wish I can take advantage of the built-in policy checking routine.
  Thanks for reading my post. :)

  Can you use the <RunAsUser> functionality within your rule?
  To use it you add this inside the <Rule>
  <RunAsUser>
  <ObjectRef type='User' name='Configurator'/>
  </RunAsUser>
  More information can be found in IDM FAQ.
  HTH..

• Cannot open/view/access interactive pdf form on iMac after updating Adobe Reader to 11.0.06.70

  Cannot open/view/access interactive pdf form on iMac after updating Adobe Reader to 11.0.06.70. Please help!

  Here is what it says:
  Please wait...
  If this message is not eventually replaced by the proper contents of the document, your PDF viewer may not be able to display this type of document.
  You can upgrade to the latest version of Adobe Reader for Windows®, Mac, or Linux® by visiting http://www.adobe.com/products/acrobat/readstep2.html.
  For more assistance with Adobe Reader visit http://www.adobe.com/support/products/ acrreader.html.

• End User Rule View Access Denied

  Hi,
  This has been discussed here, but after trying all possible options it still doesn't seem to be working.
  I am using a rule in a end user task, which throws "View Access Denied to Subject on Rule" error.
  I've set the rule authType to "EndUserRule" and
  <ObjectRef type='ObjectGroup' id='#ID#All' name='All'/>
  for MemberObjectGroups.
  Still it would keep throwing same error. I even used:
  <RunAsUser>
  <ObjectRef type='User' id='#ID#Configurator' name='Configurator'/>
  </RunAsUser>
  Still not success.....??? Any idea what could be wrong?
  I am using IdM Version 5.5
  -Thanks

  Hmmm...
  Seems to be working now...all I did was a restarted the application server??? Tried the same steps again in a different environment, and worked without a restart. Must be something odd with one particular environment.
  -Thanks though for the reply!
  -\

• Hierarchical Viewer not showing Folder Label for Accessors

  Hi,
  I am using JDev 11.1.1.5.
  I am using Hierarchical Viewer component to show master detail relationships. My tree structure is as follows:
  Locations (Level 1)
  ----->Departments (Level 2)
  ----------->Employees (Level 3)
  ----------->Rooms (Level 3)
  Employees and Rooms are the accessors of Departments (they are same level). For these accessors, I already set the Folder Labels in Tree Binding. So, in the Hierarchical Viewer, under Departments Node, there are 2 nodes to group for Employees and Rooms. But these 2 nodes are empty. They should show the Folder Labels that I defined in the tree binding.
  I tested with the ADF Tree component. It is showing folder labels correctly.
  How do I customize (to show the labels) these nodes? Could you please help me with this issue? Thanks.
  Best Regards,
  cmoster

  Hi All,
  I achieved with the following code changes in jsff page. I put this code inside the Departments Node.
  <af:outputText value="*#{node=='EMPLOYEES' ? node:''}*" inlineStyle="font-family:tahoma;font-size:14px;color:blue;font-weight:bold;" id="ot8"/>
  <af:outputText value="*#{node=='ROOMS' ? node:''}*" inlineStyle="font-family:tahoma;font-size:14px;color:green;font-weight:bold;" id="ot82"/>
  The folder labels in the tree binding are "EMPLOYEES" (for Employees Accessor) and "ROOMS" (for Rooms Accessor). After that, these 2 nodes are showing EMPLOYEES and ROOMS respectively.
  Please suggest me if it can be done with the other ways.
  Best Regards,
  cmoster

• View Access Denied

  Hi all,
  I created a custom workflow, with form and logic. I link to this custom workflow from the home page in the admin interface. I want to create my own capability for accessing this workflow. I added the capability using the admin UI, then set the the AuthType in the workflow to match this value. However, I still get 'view access denied' errors. Is there something else I need to do here? I did this once before but this time it doesn't seem to be working.... What else do I need to do?
  Thanks!
  Jim

  This is actually only partially working. The workflow I have does a checkout and check in of a user view, and modifies some data. So it is requiring that the user executing the workflow have the Update User capability as well as my custom capability. I don't really want it to have this capability. How can I get around it? I just want them to be able to run my workflow, but not edit a general user view...

• View Access Deniew

  Hi All,
  I am trying to call a workflow from idm user interface (from login.jsp itself). I followed the following steps:
  1. Created a link in user/login.jsp
  <p class='subtitle'><a href="<%=p.encodeRedirectURL(user/anonProcessLaunch.jsp?id=Sample+Workflow1")%">">Recover Password</A></p>
  2. Created a workflow "Sample Workflow1".
  3. In Repository I put Authorization Type as "EndUserTask" and Organization as "End User". I also tried with Organization as "All".
  4. Registered the workflow in "Anonymous User Tasks".
  <Extension>
  <List>
  <List>
  <String>End User Anonymous Enrollment</String>
  <String>Request an Identity Manager account.</String>
  <String>Sample Workflow1</String>
  </List>
  </List>
  </Extension>
  5. Commented
  /*if (anonUser == null) {
  String url = "user/anonlogin.jsp?next=user/anonProcessLaunch.jsp&id=" +
  request.getParameter("id");
  LoginHelper.redirect(req, out, url);
  return;
  in anonProcessLaunch.jsp because before that I was getting a login page after clicking on the link.
  But when I click the link, I am getting error "View access denied to Reset on process Sample Workflow1".
  Please advice.
  Thanks,
  Gaurav</a>

  It got resolved. The problem was with the syntax in Anonymous User Tasks. It should be in the following format:
  <Extension>
  <List>
  <List>
  <String>End User Anonymous Enrollment</String>
  <String>Request an Identity Manager account.</String>
  </List>
  <List>
  <String>Sample Workflow1</String>
  <String>Sample Workflow1</String>
  </List>
  </List>
  </Extension>
  Thanks,
  Gaurav

• View access denied to Subject .. on ProvisioningTask: Worflow

  Good Morning!
  I am using Identity Manager 8.1, I am creating a Workflow for end users but I have the next error when I am ejecuting the work flow, "View access denied to Subject .. on ProvisioningTask: Worflow".
  The next is the activity:
  <Activity id='1' name='Get Requester View'>
  <Action id='0' application='com.waveset.session.WorkflowServices'>
  <Argument name='op' value='getView'/>
  <Argument name='type' value='User'/>
  <Argument name='id'>
  <ref>accountId</ref>
  </Argument>
  <Argument name='authorized' value='true'/>
  <Argument name='options'>
  <Map>
  <MapEntry key='noFetch' value='true'/>
  </Map>
  </Argument>
  <Variable name='view'/>
  <Return from='view' to='user'/>
  </Action>
  <Transition to='Is Requestor a Manager'/>
  <WorkflowEditor x='62' y='21'/>
  </Activity>
  Any body can help me? Where is the error?.
  ATTE: Felipe Forero

  Have you added you new workflow to end user tasks ?

• View access denied to configurator

  hi all,
  I have created a workflow which contains just one activity other then start and end.This activity is calling a form.Whenever i try to run the workflow from end user menu i get the error "view access denied to configurator".However when i add this workflow name to configuration object's end user tasks the error disappears and i am able to execute the workflow.Can some one explain me why is it so?
  tia

  This is because the end user doesn't have enough rights to execute the workflow. You can add your workflow to "EndUserTasks.xml".
  Get the "EndUserTasks.xml" configuration object from debug/session and add your work flow.
  eg:
  <Extension>
  <List>
  <List>
  <String>ur workflow</String>
  <String>ur workflow</String>
  </List>
  </List>
  </Extension>

• SCSM View access control not working

  I have 15 odd each SCSM Incident and SR roles, one for each support group.  Each role contains an AD group, populated with users.  No OTB roles contain any users other than the admin role.
  Each role is granted access to only the views for SR and IM that they need. 
  All the views are stored in one MP, that is one top level folder with all the views inside it.  So when they expand the folder, they should only see the views assigned to the roles of which they are a member.
  However, more and more often, Users are opening their console to find that they see all the views, for all roles.
  Sometime if they shut down the console, and restart it, the views will return to normal.
  But that is starting not to work anymore as well.  And its very odd that it will happen to one user in the role, but not the other users.
  Any ideas?
  SCSM2012 R2
  Joshua Fuente

  Never mind, I did find that they added a group to an OTB role... Removed, Fixed.  Created a new role, and removed the view access....
  Joshua Fuente

• Hierarchical View from STS

  Hi
     As an planning coordinator, when he launch the STS, he will sees the Hierarchical View from the overview page first, if he need to see the status of each node, he have to open each sub-node one after another, currently it take about 40 seconds to open one node,there are 10 levels in our Hierarchy, it will take 400 second to get to the lowest level, this is not acceptable, anybody know a better way to improve the performance?

  Hi Toshias,
      What do you mean by "Do you use the new STS functionality of BW 3.5/SEM4.0"?, we are now using BW 3.5.
  since our hierarchy is kind of large, it take 40 second to open one level of node, while in STS you can only open one level of node after another, that's why it take long time to get the the lowest level.

• View access on triggers

  Oracle DB version 9.2.0.6.0 on HP Unix - Itanium 11.23
  Is it possible to give view access on triggers to the developers.
  I just want them to view the code.
  I need this so that when the Application Users receive in error due to the triggers created , the developer / funtional
  people should be able to read the trigger code.

  In TOAD the user logins and wants to describe the object (Key used F4) then the entire code is displayed., but in my case say for example - In TOAD after login when i type a trigger name which exists and click f4 it should describe the object..but at this point it gives error "Object not found' , but if i run a select query on that trigger name i get the output.
  Are you using TOAD?
  I hope i am making it clear.
  I want to know why after giving select access i am not able to describe the object..

• View access denied to Subject  on a Rule error: - what does it mean?

  I get this red error message when I attempt to validate a field on a form.
  I am logged in as mailadmin and I am using his default form. When I edit and save a user, I want to ensure that the mail username is unique.
  I wrote a rule which compares the username entered on the form against all present IdM accountIds (queriable attribute 'name'). The rule has a <RunAsUser> section and the rule runs as id 'Configurator'
  What is the trick here to allow mailadmin View access?
  I want an admin (not Configurator) to be able to list all IdM objects so I can apply the Attribute condition startswith for all present IdM accountIds. I believe it should be possible.
  Any hints gratefully accepted

  I've had problems with a rule that was unaccessible to end users. here is what I had to change in the rule :
  <Rule authType='EndUserRule'
  <ObjectRef type='ObjectGroup' id='#ID#All' name='All'/>
  now it works