{"type":"doc","content":[{"type":"extension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"toc","parameters":{"macroParams":{"maxLevel":{"value":"7"},"minLevel":{"value":"1"}},"macroMetadata":{"macroId":{"value":"8305f6df069588cf0faadcd6ec8a3d13"},"schemaVersion":{"value":"1"},"title":"Table of Contents"}},"localId":"3bb02f06-264c-434a-8782-6d23d2efb60b"}},{"type":"paragraph","content":[{"text":"Prior to version ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2021.3.0","localId":"424298d1-abc0-4cfb-87fe-94c1bf3e55d3"}},{"text":", data security was configured within the technical administration and required programming skills to define security rules.","type":"text"}]},{"type":"paragraph","content":[{"text":"Starting from version ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2021.3.0","localId":"ecf8a3a2-548d-480b-8a13-aa215f7d804c"}},{"text":", application provides a mechanism for securing data access without requiring access to the technical admin interface, nore specific programming knowledge.","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Requirements","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Plugin PACKAGED_Security installed and activated","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Structures ","type":"text"},{"text":"pkgsecugroup","type":"text","marks":[{"type":"code"}]},{"text":" and ","type":"text"},{"text":"pkgsecupermission","type":"text","marks":[{"type":"code"}]},{"text":" restored on application","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Make use of plugin provided macros in security rules","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Eligible structures must be identified","type":"text"}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Overview","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Permissions ","type":"text"},{"text":"pkgsecupermission","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"A permission represents an authorized action.","type":"text"}]},{"type":"paragraph","content":[{"text":"Permission are defined by giving a functional name (property ","type":"text"},{"text":"name","type":"text","marks":[{"type":"code"}]},{"text":") and a permission key (property ","type":"text"},{"text":"permission","type":"text","marks":[{"type":"code"}]},{"text":").","type":"text"}]},{"type":"paragraph","content":[{"text":"A permission grants a right for a context. The given right is resolved by analyzing the permission property. Permission follows the following pattern:","type":"text"}]},{"type":"paragraph","content":[{"text":"///[modifiers]+","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"Example: A ","type":"text"},{"text":"pkgsecupremission","type":"text","marks":[{"type":"code"}]},{"text":" instance is defined with following with properties:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"name: “Update owned offline“ ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"permission: ","type":"text"},{"text":"v1/objectdata/update/$offline/$selfowner","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"paragraph","content":[{"text":"Such permission grants to update instances in an offline status (status is not online and not archived) that the operating user owns (","type":"text"},{"text":"object.owner == surfer.id","type":"text","marks":[{"type":"code"}]},{"text":")","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Patterns","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"version:","type":"text","marks":[{"type":"strong"}]},{"text":" The only available version for patterns is ","type":"text"},{"text":"v1","type":"text","marks":[{"type":"code"}]},{"text":" but introducing a version in patterns will ease further improvements and ease ascendent compatibility. Until new versions are available, just keep in mind that natively handled permissions start with “v1”.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"domain:","type":"text","marks":[{"type":"strong"}]},{"text":" The domain of the security rule that this permission will act on. As of ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2021.3.0","localId":"42b31a11-1b37-4e11-95cd-056faec6a673"}},{"text":", ","type":"text"},{"text":"objectdata","type":"text","marks":[{"type":"code"}]},{"text":"and ","type":"text"},{"text":"boards","type":"text","marks":[{"type":"code"}]},{"text":" are handled. ","type":"text"},{"type":"hardBreak"},{"text":"Since ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3","localId":"4b945bed-71fa-4be2-9d13-bd93ccdfd0b5"}},{"text":", ","type":"text"},{"text":"objectactions","type":"text","marks":[{"type":"code"}]},{"text":" and ","type":"text"},{"text":"applications","type":"text","marks":[{"type":"code"}]},{"text":" domain are handled","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"action:","type":"text","marks":[{"type":"strong"}]},{"text":" The action within the domain that this permission will act on. As of ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2021.3.0","localId":"3204d942-5b38-4050-a3a0-b63475062672"}},{"text":", all actions from objectdata domain can be handled.","type":"text"},{"type":"hardBreak"},{"text":"Since ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3","localId":"1fd1d93b-4484-4adc-9b95-436b8d1c1615"}},{"text":", new actions added to objectdata and objectactions are handled.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"modifiers:","type":"text","marks":[{"type":"strong"}]},{"text":" Modifiers will define the context for which the action will be granted. Modifiers vary from one action to the other:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text","marks":[{"type":"strong"}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"insert","type":"text","marks":[{"type":"strong"}]},{"text":" action: 1 modifier is to be defined: ","type":"text"},{"text":"creationMode","type":"text","marks":[{"type":"strong"}]},{"text":". Therefore, all ","type":"text"},{"text":"insert permissions","type":"text","marks":[{"type":"strong"}]},{"text":" follow this pattern: ","type":"text"},{"text":"v1/objectdata/insert/","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"changestatus","type":"text","marks":[{"type":"strong"}]},{"text":" action: 3 modifiers are to be defined: ","type":"text"},{"text":"workflowAction","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"instanceStatus","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"ownership","type":"text","marks":[{"type":"strong"}]},{"text":". Therefore, all changestatus permissions follow this pattern: ","type":"text"},{"text":"v1/objectdata/changestatus///","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"other objectdata actions","type":"text"},{"text":" (delete, i18nfieldstranslate, order, retrievecaption, update, view):","type":"text","marks":[{"type":"strong"}]},{"text":" 2 modifiers are to be defined: ","type":"text"},{"text":"instanceStatus","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"ownership","type":"text","marks":[{"type":"strong"}]},{"text":". Therefore, all those actions follow this pattern: ","type":"text"},{"text":"v1/objectdata///","type":"text","marks":[{"type":"code"}]}]}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"boards","type":"text","marks":[{"type":"strong"}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"makepublicboard","type":"text","marks":[{"type":"strong"}]},{"text":" action: No modifiers - permission is granted or not","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"shareboard","type":"text","marks":[{"type":"strong"}]},{"text":" action: 3 modifiers are to be defined: ","type":"text"},{"text":"boardVisibility","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"boardType","type":"text","marks":[{"type":"strong"}]},{"text":", ","type":"text"},{"text":"ownership","type":"text","marks":[{"type":"strong"}]},{"text":",","type":"text"}]}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"applications","type":"text","marks":[{"type":"strong"}]},{"text":" (since ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3","localId":"193660a1-acb4-4915-956f-dacfd6a39575"}},{"text":")","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"isavailable ","type":"text","marks":[{"type":"strong"}]},{"text":"action: 1 modifier is to be defined: ","type":"text"},{"text":"applicationName","type":"text","marks":[{"type":"strong"}]},{"text":". Therefore, all ","type":"text"},{"text":"isavailable permissions","type":"text","marks":[{"type":"strong"}]},{"text":" follow this pattern: ","type":"text"},{"text":"v1/applications/isavailable/","type":"text","marks":[{"type":"code"}]}]}]}]}]}]}]}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Modifiers","type":"text"}]},{"type":"paragraph","content":[{"text":"Each modifier supports specific keywords to finely define the context.","type":"text"}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"boardVisibility","type":"text"}]},{"type":"paragraph","content":[{"text":"Allows to limit permission based on boards visibility:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$publicboard","type":"text","marks":[{"type":"code"}]},{"text":": Grants permission on a public board (private = 2)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$privateboard","type":"text","marks":[{"type":"code"}]},{"text":": Grants permission on a private board (private = 1)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anyvisibilityboard","type":"text","marks":[{"type":"code"}]},{"text":": Grants permission regardless of visibility","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"boardType","type":"text"}]},{"type":"paragraph","content":[{"text":"Allows to limit permission based on the type of board:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anyboardtype","type":"text","marks":[{"type":"code"}]},{"text":": Grants permission on any type of board","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":": Grants permission on board of type ","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"creationMode","type":"text"}]},{"type":"paragraph","content":[{"text":"Creation mode represents how the instance is created. 3 keywords are available:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$newcreation","type":"text","marks":[{"type":"code"}]},{"text":": Creating a fresh instance (eg click on the “New” button)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$copycreation","type":"text","marks":[{"type":"code"}]},{"text":": Create an instance by duplicating an existing one or by creating a workcopy","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anycreation","type":"text","marks":[{"type":"code"}]},{"text":": Any creation mode","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"workflowAction","type":"text"}]},{"type":"paragraph","content":[{"text":"Workflow action represents the action that is performed on the object from a workflow perspective. 6 keywords are available:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$publish","type":"text","marks":[{"type":"code"}]},{"text":": Publishing action: performing a workflow action that will move the instance in an ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" marked state","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$archive","type":"text","marks":[{"type":"code"}]},{"text":": Archiving action: performing a workflow action that will move the instance in an ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]},{"text":" marked state","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$forward","type":"text","marks":[{"type":"code"}]},{"text":": Forward action: performing an action marked ","type":"text"},{"text":"forward","type":"text","marks":[{"type":"strong"}]},{"text":", and that ","type":"text"},{"text":"will not lead to","type":"text","marks":[{"type":"strong"}]},{"text":" ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" or ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]},{"text":" marked state.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$backward","type":"text","marks":[{"type":"code"}]},{"text":": Backward action: performing an action ","type":"text"},{"text":"NOT","type":"text","marks":[{"type":"strong"}]},{"text":" marked ","type":"text"},{"text":"forward","type":"text","marks":[{"type":"strong"}]},{"text":", and that ","type":"text"},{"text":"will not lead to","type":"text","marks":[{"type":"strong"}]},{"text":" ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" or ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]},{"text":" marked state.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$process","type":"text","marks":[{"type":"code"}]},{"text":": Any process action: performing that ","type":"text"},{"text":"will not lead to","type":"text","marks":[{"type":"strong"}]},{"text":" ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" or ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]},{"text":" marked state.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anyaction","type":"text","marks":[{"type":"code"}]},{"text":": Any workflow action (including publishing and archiving actions)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":": If none of the above keywords, the action name is taken as is and resolved base on the instance’s workflow","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"instanceStatus","type":"text"}]},{"type":"paragraph","content":[{"text":"Instance status represents the current status of the object from a workflow perspective. 5 keywords are available:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$online","type":"text","marks":[{"type":"code"}]},{"text":": An ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" marked state","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$archived","type":"text","marks":[{"type":"code"}]},{"text":": An ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]},{"text":" marked state","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$offline","type":"text","marks":[{"type":"code"}]},{"text":": A state that is neither marked ","type":"text"},{"text":"online","type":"text","marks":[{"type":"strong"}]},{"text":" not ","type":"text"},{"text":"archived","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$initialstatus","type":"text","marks":[{"type":"code"}]},{"text":": The initial state of the instance (usually = 2)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anystatus","type":"text","marks":[{"type":"code"}]},{"text":": Any state","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":": It is possible to create custom names regrouping several states (see further)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":": It is possible to reference a status ID directly (New in ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3.0","localId":"3eab9ae9-251f-4fc7-a232-e9b2c1005af2"}},{"text":" )","type":"text"}]}]}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"ownership","type":"text"}]},{"type":"paragraph","content":[{"text":"Ownership allows to limit a permission to the owner property of an instance. 7 keywords are available","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$selfowner","type":"text","marks":[{"type":"code"}]},{"text":": User must be the owner of the instance to be able to perform an action","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$anyowner","type":"text","marks":[{"type":"code"}]},{"text":": No restriction on ownership","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$boardcollaborator","type":"text","marks":[{"type":"code"}]},{"text":": Specific to boards domain - Identify the surfer as a collaborator on a board","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$teammember","type":"text","marks":[{"type":"code"}]},{"text":": ","type":"text"},{"type":"status","attrs":{"color":"purple","style":"bold","text":"since 2024.1","localId":"794196ed-bb07-455c-9db1-051c8e01fe11"}},{"text":" Allows to check whether the surfer is part of the field ","type":"text"},{"text":"team","type":"text","marks":[{"type":"code"}]},{"text":" (team is a child multi on user). This requires the structure to have the ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" config tag ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$teamleader","type":"text","marks":[{"type":"code"}]},{"text":": ","type":"text"},{"type":"status","attrs":{"color":"purple","style":"bold","text":"since 2024.1","localId":"5e0d5b89-eca9-4a3b-91cf-92deaad6a08d"}},{"text":"Allows to check whether the surfer is denoted in the field ","type":"text"},{"text":"jobowner","type":"text","marks":[{"type":"code"}]},{"text":". This requires the structure to have the ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" config tag ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$teamviewer","type":"text","marks":[{"type":"code"}]},{"text":": ","type":"text"},{"type":"status","attrs":{"color":"purple","style":"bold","text":"since 2024.4","localId":"823c0f81-4285-49ca-b20a-c74935dc092e"}},{"text":"Allows to check whether the surfer is part of the field ","type":"text"},{"text":"viewers","type":"text","marks":[{"type":"code"}]},{"text":" (viewers is a child multi on user). This requires the structure to have the ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" config tag.","type":"text"},{"type":"hardBreak"},{"text":"Caution, ","type":"text","marks":[{"type":"strong"}]},{"text":"$teamviewer","type":"text","marks":[{"type":"code"}]},{"text":" ownership can only be used with view action","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"$public","type":"text","marks":[{"type":"code"}]},{"text":": ","type":"text"},{"type":"status","attrs":{"color":"purple","style":"bold","text":"since 2024.4","localId":"b57c204a-0eac-4bec-87ab-13d713716e11"}},{"text":"Allows to check whether the instance is NOT private →private field as a child activated = 2. This requires the structure to have the ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" config tag.","type":"text"}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Groups ","type":"text"},{"text":"pkgsecugroup","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"Groups allow to centralize multiple permissions on one or many objects, for one or many roles and one or many users.","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"name","type":"text","marks":[{"type":"strong"}]},{"text":": Name of the group","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"template","type":"text","marks":[{"type":"strong"}]},{"text":" (boolean): it is convenient to have groups as templates. If template is true, then this instance is not used when resolving groups to which belong a user","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"activated","type":"text","marks":[{"type":"strong"}]},{"text":" (boolean): Inactive instances are ignored","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"objectsselector","type":"text","marks":[{"type":"strong"}]},{"text":" (string): A structure selector to define which objects are managed by the group. For instance:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"assetkeyword","type":"text","marks":[{"type":"code"}]},{"text":" would apply to structure named assetkeyword. ","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"#damobject","type":"text","marks":[{"type":"code"}]},{"text":" would apply to any structure having the tag ","type":"text"},{"text":"damobject","type":"text","marks":[{"type":"code"}]},{"text":" (on table level)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"assetkeyword,#damobject","type":"text","marks":[{"type":"code"}]},{"text":" would apply to structure assetkeyword and to any object having the tag damobject","type":"text"}]}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"permissions","type":"text","marks":[{"type":"strong"}]},{"text":" (childmulti → pkgsecupermission): Permissions granted to users belonging to this group for objects matching objectselector","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"roles","type":"text","marks":[{"type":"strong"}]},{"text":" (childmulti →role): All users of selected roles will be members of the group","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"users","type":"text","marks":[{"type":"strong"}]},{"text":" (childmulti →user): All users selected will be members of this group","type":"text"}]}]}]},{"type":"panel","attrs":{"panelType":"info"},"content":[{"type":"paragraph","content":[{"text":"When defining a group as a template, properties objectsselector, roles and users will not be editable anymore. Creating templates is quite handy as you can think about it as being a group of permissions. It is recommended to create templates such as “[VIEWER]“, [CONTRIBUTOR]” or “[MANAGER]” and to link the typical permissions granted to such a group.","type":"text"}]}]},{"type":"panel","attrs":{"panelType":"warning"},"content":[{"type":"paragraph","content":[{"text":"To avoid security issues, not all structures are eligible to this mechanism. To be able to grant a permission on a structure, the table MUST have the appropriate tags.","type":"text"}]}]},{"type":"panel","attrs":{"panelType":"warning"},"content":[{"type":"paragraph","content":[{"text":"It is not possible to add users through their group. Users can only be assigned through their role or directly","type":"text"}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Identifying eligible structures","type":"text"}]},{"type":"paragraph","content":[{"text":"Structures eligibles to permission granting are marked with one or multiple table tags :","type":"text"}]},{"type":"paragraph","content":[{"text":"pkg/security/secugroup/","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"pkg/security/secugroup/all","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":" this means that to be able to manage view permissions on object foo, foo table configuration must have either ","type":"text"},{"text":"pkg/security/secugroup/view","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"pkg/security/secugroup/all","type":"text","marks":[{"type":"code"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Installing the feature","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Initializing data","type":"text"}]},{"type":"paragraph","content":[{"text":"The default NAR file contains the required structures for managing the rights, but to ease migrations, and upgrades, the NAR file does not contains neither permissions definitions nor groups:","type":"text"}]},{"type":"paragraph","content":[{"text":"Providing default values would force some ids with functional meanings on permissions, groups, roles and eventually users, which is obviously not desired as each projects needs defines different roles, each project will make use of some permissions, but not all the possible ones…","type":"text"}]},{"type":"paragraph","content":[{"text":"Additionally, delivering configured permissions or groups directly in the NAR file would increase migration complexity as product added permissions and product added groups might come in conflict with projects definitions.","type":"text"}]},{"type":"paragraph","content":[{"text":"As the whole system only relies on permission strings, a service API is provided to “fill the gap” between actual values in DB and what the product team recommends to create:","type":"text"}]},{"type":"paragraph","content":[{"text":"/api/packaged/admin/security/update","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"This API requires Administrators or TestOperators HTTP role to be executed as well as the right to create instances of ","type":"text"},{"text":"pkgsecupermission","type":"text","marks":[{"type":"code"}]},{"text":" and ","type":"text"},{"text":"pkgsecugroup","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"This API will check current data in ","type":"text"},{"text":"pkgsecupermission","type":"text","marks":[{"type":"code"}]},{"text":" and ","type":"text"},{"text":"pkgsecugroup","type":"text","marks":[{"type":"code"}]},{"text":" and create missing data in both structures. Additional information is provided in the swagger UI.","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"permissions are identified based on the permission string","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"groups are identified based on their name.","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"Product team will only provide templates for groups. Product team will always give template names with brackets.","type":"text"}]},{"type":"paragraph","content":[{"text":"It is recommended to identify project specific template with either a prefix or a suffix","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Make usage of the permissions","type":"text"}]},{"type":"paragraph","content":[{"text":"Permissions handled by the plugin are just a tool allowing to give you more flexibility to your rules, but they can be combined with any project specific rules.","type":"text"}]},{"type":"paragraph","content":[{"text":"The plugin provides a security macro per domain with the camel-cased name ","type":"text"},{"text":"pkg","type":"text","marks":[{"type":"code"}]},{"text":". These macro will be installed first time you activate the plugin.","type":"text"}]},{"type":"paragraph","content":[{"text":"You will need to make usage of these macros in your security rules:","type":"text"}]},{"type":"paragraph","content":[{"text":"For instance on ","type":"text"},{"text":"objectdata/update","type":"text","marks":[{"type":"strong"}]},{"text":", you can define a single rule “Packaged updates“ with following code:","type":"text"}]},{"type":"codeBlock","content":[{"text":"@pkgV1Objectdata('update')","type":"text"}]},{"type":"paragraph","content":[{"text":"Of course you might have more specific rules regarding users' rights on specific objects, but you can always use the macros as a starting point:","type":"text"}]},{"type":"paragraph","content":[{"text":"For instance, this call is perfectly fine","type":"text"}]},{"type":"codeBlock","content":[{"text":"STRUCTUREHASTAG(objectname, 'damobject')\nAND\nNBCOMMONELEMENTS(object.someproperty, surfer.someproperty) > 0\nAND \n@pkgV1Objectdata('update')","type":"text"}]},{"type":"paragraph","content":[{"text":"You could even add additional rules like to be able to update an object, you should be allowed to view it. In such a case, the rule could be written as ","type":"text"}]},{"type":"paragraph","content":[{"text":"In objectdata/update, rule “To update, must also be allowed to view”","type":"text"}]},{"type":"codeBlock","content":[{"text":"@pkgV1Objectdata('view') AND @pkgV1Objectdata('update')","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Adapting PreparedWhere ","type":"text"}]},{"type":"paragraph","content":[{"text":"As of ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2021.3.0","localId":"d3c0e9e7-84b6-48d5-90f8-ed066cd54fb4"}},{"text":", the engine is not able to parse the security rules to augment SQL where clauses. While such improvement could be introduced in a future version of the engine, the PACKAGED_Security plugin leverages on ","type":"text"},{"text":"AbstractPreparedWhereBusinessService","type":"text","marks":[{"type":"code"}]},{"text":" to resolve bases according to users’ given permissions:","type":"text"}]},{"type":"paragraph","content":[{"text":"2 contexts are available:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"base_pkgsecurity_view","type":"text","marks":[{"type":"code"}]},{"text":" will return a ","type":"text"},{"text":"PreparedWhere","type":"text","marks":[{"type":"code"}]},{"text":" following user’s given VIEW permissions","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"base_pkgsecurity_update","type":"text","marks":[{"type":"code"}]},{"text":" will return a ","type":"text"},{"text":"PreparedWhere","type":"text","marks":[{"type":"code"}]},{"text":" following user’s given UPDATE permissions","type":"text"}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Extend existing bases ","type":"text"}]},{"type":"paragraph","content":[{"text":"It is possible to automatically extend some bases with the ones provided by the plugin:","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Set plugin parameter ","type":"text"},{"text":"extend_bases","type":"text","marks":[{"type":"code"}]},{"text":" to ","type":"text"},{"text":"true","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Make sure ","type":"text"},{"text":"extended_bases","type":"text","marks":[{"type":"code"}]},{"text":" references to the coma-separated list of bases you want the plugin to extend (","type":"text"},{"text":"base_list,base_search","type":"text","marks":[{"type":"code"}]},{"text":" by default)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Make sure ","type":"text"},{"text":"extend_with","type":"text","marks":[{"type":"code"}]},{"text":" references the coma-separated list of bases you want to use to extend the ","type":"text"},{"text":"extended_bases","type":"text","marks":[{"type":"code"}]},{"text":" list of bases (","type":"text"},{"text":"base_pkgsecurity_view","type":"text","marks":[{"type":"code"}]},{"text":" by default)","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"By doing so, you will be instructing the plugin to extend ","type":"text"},{"text":"base_list","type":"text","marks":[{"type":"code"}]},{"text":" and ","type":"text"},{"text":"base_search","type":"text","marks":[{"type":"code"}]},{"text":" with ","type":"text"},{"text":"base_pkgsecurity_view","type":"text","marks":[{"type":"code"}]},{"text":" for each object.","type":"text"}]},{"type":"panel","attrs":{"panelType":"warning"},"content":[{"type":"paragraph","content":[{"text":"Caveats","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"This configuration will work well for all objects handled by the plugin in terms of security (all objects marked with a tag ","type":"text"},{"text":"pkg/security/secugroup","type":"text","marks":[{"type":"code"}]},{"text":" BUT","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"All roles are concerned, meaning that if you are providing access (in terms of security) with other means than the provided plugin macro for some roles, ","type":"text"},{"text":"base_pkgsecurity_view","type":"text","marks":[{"type":"code"}]},{"text":" will not reflect your specific security configuration","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"If you need to add project specific constraints in security rules, such constraints will not be included in the base.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"objects not handled by the security plugin will also be filtered, with a fully excluding clause","type":"text"}]}]}]}]},{"type":"paragraph","content":[{"text":"In order to work around those issues, you can configure ","type":"text"},{"text":"extended_bases_config","type":"text","marks":[{"type":"code"}]},{"text":" to manage in a better way the configuration: this parameter accepts either ","type":"text"},{"text":"null","type":"text","marks":[{"type":"code"}]},{"text":" (no config) or a ","type":"text"},{"text":"JsonArray","type":"text","marks":[{"type":"code"}]},{"text":" to overwrite base extensions settings on objectselector + role context:","type":"text"}]},{"type":"paragraph","content":[{"text":"Each entry of the JsonArray ","type":"text"},{"text":"MUST","type":"text","marks":[{"type":"strong"}]},{"text":" be a JsonObject that accepts the following properties:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"objectSelector","type":"text","marks":[{"type":"code"}]},{"text":": A selector for object(s) impacted by the item. If not provided or null, all objects are impacted","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"roles","type":"text","marks":[{"type":"code"}]},{"text":": A ","type":"text"},{"text":"JsonArray","type":"text","marks":[{"type":"code"}]},{"text":" of ","type":"text"},{"text":"String","type":"text","marks":[{"type":"code"}]},{"text":" referencing the roles that are impacted by this item. If null or not provided, all roles will be impacted","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"extendedBases","type":"text","marks":[{"type":"code"}]},{"text":": A ","type":"text"},{"text":"JsonArray","type":"text","marks":[{"type":"code"}]},{"text":" of ","type":"text"},{"text":"String","type":"text","marks":[{"type":"code"}]},{"text":" referencing the bases (contextnames) for which extension is changed. If null or not provided, the value from plugin parameter ","type":"text"},{"text":"extended_bases","type":"text","marks":[{"type":"code"}]},{"text":" is used.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"extendWithBases","type":"text","marks":[{"type":"code"}]},{"text":": A ","type":"text"},{"text":"JsonArray","type":"text","marks":[{"type":"code"}]},{"text":" of ","type":"text"},{"text":"String","type":"text","marks":[{"type":"code"}]},{"text":" referencing the bases that should be added to extendedBases to extend them. If null or not provided, the value from plugin parameter ","type":"text"},{"text":"extend_with","type":"text","marks":[{"type":"code"}]},{"text":" is used.","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"During the resolution of a base, ","type":"text"},{"text":"JsonObjects","type":"text","marks":[{"type":"code"}]},{"text":" are processed in given order. If the ","type":"text"},{"text":"JsonObject","type":"text","marks":[{"type":"code"}]},{"text":" matches the context (","type":"text"},{"text":"objectsSelector","type":"text","marks":[{"type":"code"}]},{"text":", ","type":"text"},{"text":"roles","type":"text","marks":[{"type":"code"}]},{"text":" from surfer, currentResolvedBase is part of ","type":"text"},{"text":"extendedBases","type":"text","marks":[{"type":"code"}]},{"text":", then the bases used for extending the base is redefined to value of ","type":"text"},{"text":"extendWithBases","type":"text","marks":[{"type":"code"}]},{"text":")","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Examples","type":"text"}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"Preventing bases for Developers to be extended","type":"text"}]},{"type":"paragraph","content":[{"text":"Given that ","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"extend_bases = true","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"extended_bases = base_list,base_search","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"extend_with = base_pkgsecurity_view","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"paragraph","content":[{"text":"To deactivate the extension for all objects for role 4 (and therefor to be able to see any instance), you can define the config to:","type":"text"}]},{"type":"codeBlock","content":[{"text":"[\n {\n \"roles\": [\n \"4\"\n ],\n \"extendWithBases\": []\n }\n]","type":"text"}]},{"type":"paragraph","content":[{"text":"for role 4, you want to redefine extendWithBases to an empty list","type":"text"}]},{"type":"heading","attrs":{"level":5},"content":[{"text":"Preventing some objects bases to be extended for some roles","type":"text"}]},{"type":"paragraph","content":[{"text":"This can be quite handy if you don’t want to allow some objects to be accessible to permissions management:","type":"text"}]},{"type":"codeBlock","content":[{"text":"[\n {\n \"objectsSelector\": \"user\",\n \"roles\": [\n \"27\"\n ],\n \"extendWithBases\": []\n }\n]","type":"text"}]},{"type":"paragraph"},{"type":"heading","attrs":{"level":3},"content":[{"text":"Make usage of those bases programatically","type":"text"}]},{"type":"paragraph","content":[{"text":"You can easily make use of those context to augment ","type":"text"},{"text":"base_list","type":"text","marks":[{"type":"code"}]},{"text":", ","type":"text"},{"text":"base_edit_list","type":"text","marks":[{"type":"code"}]},{"text":", ","type":"text"},{"text":"base_search","type":"text","marks":[{"type":"code"}]},{"text":"… in your project accordingly:","type":"text"}]},{"type":"codeBlock","attrs":{"language":"java"},"content":[{"text":"import com.noheto.extensions.interfaces.services.AbstractPreparedWhereBusinessService;\nimport com.noheto.preparedwhere.PreparedWhereService;\nimport wsnoheto.engine.*;\n\npublic class ProjectExtendedBaseList extends AbstractPreparedWhereBusinessService {\n @Override\n public PreparedWhere getPreparedWhere(String contextName, CTSurfer surfer, String objectName, IObjectStructureReadOnly struct, IObjectTableReadOnly table) throws PreparedWhereException {\n PreparedWhere pwProjectConstraints = PreparedWhere.load(\"\");\n // ... your project specific constraint\n \n // retrieve a PreparedWhere compliant with surfer's permission\n // note that if user has no permission OR if the object\n // is not compliant with security, you will get 0=1 constraint\n PreparedWhere pwPackagedSecurity = PreparedWhereService.getInstance()\n .getPreparedWhere(\"base_pkgsecurity_view\", surfer, objectName);\n \n return pwProjectConstraints.and(pwPackagedSecurity);\n }\n}","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Extending capabilities","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Meta statuses definitions","type":"text"}]},{"type":"paragraph","content":[{"text":"Quite often, you will need to identify workflow statuses as specific, but will not be able to rely on native keywords. For instance, you might want to identify what are the “validation steps” to be able to create permissions that will only apply to those statuses.","type":"text"}]},{"type":"paragraph","content":[{"text":"You can achieve this by configuring the plugin parameter ","type":"text"},{"text":"meta_statuses","type":"text","marks":[{"type":"strong"}]},{"text":":","type":"text"}]},{"type":"paragraph","content":[{"text":"This parameter is JSON. It accepts either null or a JsonObject.","type":"text"}]},{"type":"paragraph","content":[{"text":"If null, then no specific “metastatuses” are defined.","type":"text"}]},{"type":"paragraph","content":[{"text":"If a JsonObject, each key is a metaStatus name (exemple: “validationStep”). Associated value can be either ","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"an array of ids that corresponds to ids matching the metastatus","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"an object for which each key is the name of a workflow or default ; metastatuses will then be resolved based on the workflow name or default if not found","type":"text"}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Custom permission resolver","type":"text"}]},{"type":"paragraph","content":[{"text":"It is possible to configure a specific groovy script to resolve permissions in the surfer:","type":"text"}]},{"type":"paragraph","content":[{"text":"In plugin, configure ","type":"text"},{"text":"custom_permissions_builder","type":"text","marks":[{"type":"strong"}]},{"text":" to the SAN based groovy script path to your desired implementation. (When saving, the groovy script will be created if not exists, with sample code)","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Troubleshooting","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Datamodel compliance","type":"text"}]},{"type":"paragraph","content":[{"text":"You can check the compliance of your data model by accessing","type":"text"}]},{"type":"paragraph","content":[{"text":"/api/packaged/admin/security/validators/model/html","type":"text","marks":[{"type":"code"}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"if first line is green, the data model is good","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"if first line is yellow, you could improve it","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"if first line is red, it won’t work","type":"text"}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Testing a user","type":"text"}]},{"type":"paragraph","content":[{"text":"You can check what the plugin has resolved for a user by calling","type":"text"}]},{"type":"paragraph","content":[{"text":"/api/packaged/admin/security/surfer-keys/","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"You can check the bases resolved by the plugin for a user by calling","type":"text"}]},{"type":"paragraph","content":[{"text":"/api/packaged/admin/security/surfer-bases/","type":"text","marks":[{"type":"annotation","attrs":{"annotationType":"inlineComment","id":"15fb5fbd-8722-451d-8344-57250963f73b"}},{"type":"code"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"New in 2022.3.0","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"New handled actions in ","type":"text"},{"text":"objectdata","type":"text","marks":[{"type":"code"}]},{"text":" domain","type":"text"}]},{"type":"paragraph","content":[{"text":"Following actions were added to ","type":"text"},{"text":"objectdata","type":"text","marks":[{"type":"code"}]},{"text":" domain and can be handled with ","type":"text"},{"text":"@pkgV1Objectdata","type":"text","marks":[{"type":"code"}]},{"text":" ","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"broadcastVideo","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"defineVideoPoster","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"editPicture","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"editVideoChapters","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"editVideoSubtitles","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"embed","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"manageVideoCallToActions","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"manageVideoRolls","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"order","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"sliceVideo","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"All these actions follow the pattern ","type":"text"},{"text":"v1/objectdata///","type":"text","marks":[{"type":"code"}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"New handled domains","type":"text"}]},{"type":"paragraph","content":[{"text":"From ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3.0","localId":"ee61bf62-4c96-485a-bc5e-cd3d0d778663"}},{"text":" some new domains are handled through new macros. Find below how these domains are handled.","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Domain ","type":"text"},{"text":"applications","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"applications","type":"text","marks":[{"type":"code"}]},{"text":" domain defines one action ","type":"text"},{"text":"isAvailable","type":"text","marks":[{"type":"code"}]},{"text":" allowing to grant access on an application base on a code (parameter ","type":"text"},{"text":"applicationname","type":"text","marks":[{"type":"code"}]},{"text":").","type":"text"}]},{"type":"paragraph","content":[{"text":"By default, the BackOffice application has for code ","type":"text"},{"text":"bo","type":"text","marks":[{"type":"code"}]},{"text":", portal front-end has for code ","type":"text"},{"text":"portal","type":"text","marks":[{"type":"code"}]},{"text":", Office pickers have for code ","type":"text"},{"text":"officeassetpicker","type":"text","marks":[{"type":"code"}]},{"text":" and all other pickers have for code ","type":"text"},{"text":"assetpicker","type":"text","marks":[{"type":"code"}]},{"text":".","type":"text"}]},{"type":"paragraph","content":[{"text":"Permissions for this action have the pattern:","type":"text"}]},{"type":"paragraph","content":[{"text":"v1/applications//","type":"text","marks":[{"type":"code"}]},{"text":". As only one action is available as of ","type":"text"},{"type":"status","attrs":{"color":"neutral","style":"bold","text":"2022.3.0","localId":"fdfd2e39-7447-45b3-a2d6-279fd44cc131"}},{"text":" , the pattern can be simplified to ","type":"text"},{"text":"v1/applications/isavailable/","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"The macro ","type":"text"},{"text":"@pkgV1Applications","type":"text","marks":[{"type":"code"}]},{"text":" handles permissions checks. Note that as others PACKAGED_Security macros, the action ne is to be passed as an argument:","type":"text"}]},{"type":"codeBlock","content":[{"text":"@pkgV1Applications('isAvailable')","type":"text"}]},{"type":"paragraph"},{"type":"heading","attrs":{"level":4},"content":[{"text":"Domain ","type":"text"},{"text":"objectactions","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"objectactions","type":"text","marks":[{"type":"code"}]},{"text":" domain allows to define permissions on actions on an object type, with no restriction on an instance. Its primary goal is to help displaying actions triggers targeting multiple objects.","type":"text"}]},{"type":"paragraph","content":[{"text":"PACKAGED_Security plugin provides a new macro for handling ","type":"text"},{"text":"objectactions","type":"text","marks":[{"type":"code"}]},{"text":" domain actions: ","type":"text"},{"text":"@pkgV1ObjectActions","type":"text","marks":[{"type":"code"}]},{"text":". As for ","type":"text"},{"text":"@pkgV1Objectdata","type":"text","marks":[{"type":"code"}]},{"text":", this macro takes one argument: the name of the action to test permissions for.","type":"text"}]},{"type":"paragraph","content":[{"text":"@pkgV1ObjectActions","type":"text","marks":[{"type":"code"}]},{"text":" is defined to check for an ","type":"text"},{"text":"objectname","type":"text","marks":[{"type":"code"}]},{"text":" if some permissions were given to a user for the corresponding ","type":"text"},{"text":"objectdata","type":"text","marks":[{"type":"code"}]},{"text":" action ","type":"text"},{"text":"→ No additional configuration is required on ","type":"text","marks":[{"type":"strong"}]},{"text":"objectactions","type":"text","marks":[{"type":"code"}]},{"text":": an action from objectactions domain will be granted if some permissions were given on ","type":"text","marks":[{"type":"strong"}]},{"text":"objectdata","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"Equivalences","type":"text","marks":[{"type":"strong"}]}]},{"type":"table","attrs":{"layout":"default","width":760.0,"localId":"a3cfafb8-a985-4632-a1a9-92abc632a465"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"objectactions action domain","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"tested objectdata action","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph"}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"create","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":3,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"insert","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":3,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of either","type":"text"}]},{"type":"paragraph","content":[{"text":"objectdata/insert/$anycreation","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"or","type":"text"},{"type":"hardBreak"},{"text":"objectdata/insert/$newcreation","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"damimport","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"massimport","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"multiupdate","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":2,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"update","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":2,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/update/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"datavaluespicker","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"broadcastVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"broadcastVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/broadcastvideo/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"defineVideoPoster","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"defineVideoPoster","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/definevideoposter/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"delete","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"delete","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/delete/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"editPicture","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"editPicture","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/editpicture/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoChapters","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoChapters","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/editvideochapters/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoSubtitles","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoSubtitles","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/editvideosubtitles/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"embed","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"embed","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/embed/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoCallToActions","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoCallToActions","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/managevideocalltoactions/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoRolls","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoRolls","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/managevideorolls/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"order","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"order","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/order/*","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[245.0]},"content":[{"type":"paragraph","content":[{"text":"sliceVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[230.0]},"content":[{"type":"paragraph","content":[{"text":"sliceVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[284.0]},"content":[{"type":"paragraph","content":[{"text":"Check for existence of","type":"text"},{"type":"hardBreak"},{"text":"objectdata/slicevideo/*","type":"text","marks":[{"type":"code"}]}]}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Cheat sheet","type":"text"}]},{"type":"paragraph","content":[{"text":"Find for each managed domain / action, the permission pattern","type":"text"}]},{"type":"table","attrs":{"layout":"default","width":760.0,"localId":"ae954ce8-323a-4ea0-90a7-2b94578b68c7"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"domain","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"action","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"permission pattern","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"applications","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"isAvailable","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/applications/isavailable/:applicationName","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"boards","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"makePublicBoard","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/boards/makepublicboard","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"boards","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"shareBoard","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/boards/shareboard/:boardVisibility/:boardType/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"broadcastVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/broadcastvideo/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"changeStatus","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/changestatus/:workflowAction/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"defineVideoPoster","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/definevideoposter/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"delete","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/delete/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"editPicture","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/editpicture/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoChapters","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/editvideochapters/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"editVideoSubtitles","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/editvideosubtitles/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"embed","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/embed/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"i18nFieldsTranslate","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/i18nfieldstranslate/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"insert","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/insert/:creationMode","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoCallToActions","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/managevideocalltoactions/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"manageVideoRolls","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/managevideorolls/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"order","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/order/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"retrieveCaption","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/retrieveCaption/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"sliceVideo","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/slicevideo/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"update","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/update/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[125.0]},"content":[{"type":"paragraph","content":[{"text":"objectdata","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[158.0]},"content":[{"type":"paragraph","content":[{"text":"view","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[476.0]},"content":[{"type":"paragraph","content":[{"text":"v1/objectdata/view/:instanceStatus/:ownership","type":"text","marks":[{"type":"code"}]}]}]}]}]},{"type":"paragraph","content":[{"text":"Find available values for modifiers","type":"text"}]},{"type":"table","attrs":{"layout":"default","width":760.0,"localId":"3bb5e9d4-0ffe-4586-8984-c7123a3e4e7e"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"modifier","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"value","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"description","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"applicationName","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Name of the application (BackOffice → ","type":"text"},{"text":"bo","type":"text","marks":[{"type":"code"}]},{"text":"...)","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"boardVisibility","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$publicboard","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A board that is not private","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$privateboard","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A private board","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anyvisibilityboard","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A board private or not","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"boardType","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anyboardtype","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Any type of board","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A board of type ","type":"text"},{"text":"","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"creationMode","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$newcreation","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Only fresh new instances","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$copycreation","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Only copies","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anycreation","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Any mode","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"instanceStatus","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#ffffff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$online","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#ffffff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"An online marked state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$archived","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"An archived marked state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$offline","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A state that is neither marked online not archived","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$initialstatus","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"The initial state of the instance (usually = 2)","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anystatus","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Any state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"A custom meta state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"The ID of a status","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"ownership","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$selfowner","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"User must be the owner of the instance to be able to perform an action","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anyowner","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"No restriction on ownership","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$boardcollaborator","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Specific to boards domain","type":"text","marks":[{"type":"em"}]},{"text":" - Identify the surfer as a collaborator on a board","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$teamleader","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"User is referenced on ","type":"text"},{"text":"jobowner","type":"text","marks":[{"type":"code"}]},{"text":" field (child → user)","type":"text"}]},{"type":"paragraph","content":[{"text":"Requires ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" on structure ","type":"text"}]},{"type":"paragraph","content":[{"type":"status","attrs":{"color":"neutral","style":"bold","text":"since 2024.4","localId":"81f4dfb1-d0d6-47d1-8df5-ddbce19be55e"}}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$teammember","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"User is referenced on ","type":"text"},{"text":"team","type":"text","marks":[{"type":"code"}]},{"text":" field (cmlr → user)","type":"text"}]},{"type":"paragraph","content":[{"text":"Requires ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" on structure ","type":"text"}]},{"type":"paragraph","content":[{"type":"status","attrs":{"color":"neutral","style":"bold","text":"since 2024.4","localId":"d78d5c69-7468-4ce3-a537-10e9adc4bd76"}}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$teamviewer","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"User is referenced on ","type":"text"},{"text":"viewers","type":"text","marks":[{"type":"code"}]},{"text":" field (cmlr → user)","type":"text"}]},{"type":"paragraph","content":[{"text":"Requires ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" on structure ","type":"text"}]},{"type":"paragraph","content":[{"type":"status","attrs":{"color":"neutral","style":"bold","text":"since 2024.4","localId":"19c986db-f01e-4d38-88c4-d26aaf3d7cfa"}}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$public","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"background":"#deebff","rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Instance has property ","type":"text"},{"text":"private","type":"text","marks":[{"type":"code"}]},{"text":" equals to false","type":"text"}]},{"type":"paragraph","content":[{"text":"Requires ","type":"text"},{"text":"pkg/security/collaborative","type":"text","marks":[{"type":"code"}]},{"text":" on structure ","type":"text"}]},{"type":"paragraph","content":[{"type":"status","attrs":{"color":"neutral","style":"bold","text":"since 2024.4","localId":"4df44d9b-8e7a-4df2-b214-e4165ffc8f6b"}}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"workflowAction","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$publish","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Publishing action: performing a workflow action that will move the instance in an online marked state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$archive","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Archiving action: performing a workflow action that will move the instance in an archived marked state","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$forward","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Forward action: performing an action marked forward, and that will not lead to online or archived marked state.","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$backward","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Backward action: performing an action NOT marked forward, and that will not lead to online or archived marked state.","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$process","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Any process action: performing that will not lead to online or archived marked state.","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"$anyaction","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"Any workflow action (including publishing and archiving actions)","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph"}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[226.67]},"content":[{"type":"paragraph","content":[{"text":"If none of the above keywords, the action name is taken as is and resolved base on the instance’s workflow","type":"text"}]}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Further reading","type":"text"}]},{"type":"paragraph","content":[{"type":"inlineCard","attrs":{"url":"https://crossmedia.atlassian.net/wiki/spaces/WD/pages/2161934337"}},{"text":" To learn how the default application is configured in terms of roles and permissions","type":"text"}]},{"type":"paragraph","content":[{"type":"inlineCard","attrs":{"url":"https://crossmedia.atlassian.net/wiki/spaces/WD/pages/2121072641"}},{"text":" To learn how you can use a dedicated user interface to configure roles and permissions","type":"text"}]}],"version":1}

Browser not supported