Nintex Connect

The Official Community Site for Nintex Software Products, including Nintex Workflow 2007, 2010 and 2013; Nintex Workflow for Project Server 2010; Nintex Reporting 2008 and Nintex Analytics 2010; Nintex Forms 2010; Nintex Live and Nintex SmartLibrary.

Welcome to Nintex Connect Sign in | Join | Help

Home

Forums

Downloads

Nintex Connect » Nintex Workflow 2007 » General Discussion » Re: Permission Issue when Adding/Deleting/Updating list items

Permission Issue when Adding/Deleting/Updating list items

Last post 06-04-2012, 11:39 PM by Kevin_A. 1 replies.


	Sort Posts: Previous Next

06-04-2012, 5:24 PM 23293

P Lee
Joined on 06-04-2012
Posts 1

Permission Issue when Adding/Deleting/Updating list items

Reply Quote

I have a vacation approval workflow in SharePoint 2010 with the updates the following items:

a. Vacation Approval Form Library

b. Vacation Calendar.

An employee creates and submits a Vacation form; his manager approves it. Upon approval, his vacation schedule is posted on the Vacation Calendar.

But this works only if the employee (aka the workflow initiator) has contribute level permission to the calendar.

I don't want the employee to add or delete items to the vacation calendar. Only his manager, or the Nintex workflow should have permssion to modify enties in the calendar. When I set the Calendar permission of the employee to Read, this workflow fails.

It appears that the problem is that the workflow inherits the permission of the initiator (the employee). Can I set it up to inherit the permission of the manager or approver?

I played with Set Item Permission. This may allow me to delete a calendar entry that already exist. But -- how to can you grant permssion to employees to create something that does not exist yet.

Assigg Flexi task also has a Item Permission property. What items are we setting permission to?

Thanks in advance.

Report abuse

06-04-2012, 11:39 PM 23295 in reply to 23293

Kevin_A
Joined on 08-31-2010
Brisbane
Posts 21

Re: Permission Issue when Adding/Deleting/Updating list items

Reply Quote

I've been dealing with this a lot lately.

The workflow runs in the permission context of the initiator of the workflow
Set Item Permissions in Flexi Task action sets the permissions of the item the workflow is running on, nothing to do with the task or elevating permissions of the initiator to do anything specific.
Set Item Permissions can only set the permissions of an item, not a list (like a Calendar)
Some actions have a "Run as workflow owner" setting, I'm still unsure why, but this setting is only available in certain cases. Specifically it's unavailable if the action is used in a state machine, any kind of branch (task outcome branch, switch, parallel actions etc).

For your specific scenario you'll need to do the following.

Locate a portion in your workflow after approval that is on the normal vertical line of actions, not on a branch of any kind.
Configure a Create Item (or Create Item in another site) action with the settings you require
Click on the "Common" tab
Check the box that says "Run as workflow owner". This will cause any items created by the workflow to be created by you (if you publish the workflow). I'd suggest either using a service account to publish the workflow or using a web service to create the item
If the calendar item should only be created in certain circumstances then you'll need to set some kind of flag after approval then have the Create Item in an If action and only run the If action when the flag is positive (or whatever value you choose).

I'm doing this exact same scenario for a client right now and although messy it works.

Hope that helps.