and more in a single search tool across platforms. Read the announcement here. |
11/17/2023 04:54 AM
Hello Team,
We have a requirement where we need to check if the existing entitlements in Enterprise role belongs to App1 and App2 and when we try to add entitlement from App3 the request should be Auto-Rejected.
We tried to find supporting variables in IF-ELSE condition in Workflow but was not able to find any solution.
Can you help me to find the solution around this?
Regards,
Ankita
11/17/2023 09:00 AM
Are you talking about adding new entitlement as part of role modification?
11/21/2023 07:39 PM
Hi @dgandhi ,
Yes, I am talking of adding new entitlement as part of role modification.
11/21/2023 08:04 PM - edited 11/21/2023 08:05 PM
Use custom assignment block with custom query.
Alternative you can modify gsp to block other endpoints
11/21/2023 08:08 PM
Hi @rushikeshvartak,
Thank you for the suggestion but is it possible for you to provide some example for custom query to block the entitlements for app3?
Also please help me to understand what is gsp to block other endpoints.
11/21/2023 08:21 PM
Modify below GSP
roles/selectentitlement.gsp | roles/addentitlementorole.gsp |
QUery :
Use - table roles_historychangelog to find entitlement added in roles
Sample query : select distinct ug.USERGROUPKEY from user_groups ug, endpoints ep, roles_historychangelog rhcl where rhcl.FIELDNAME = 'endpointkey' and rhcl.ROLEHISTORYKEY = ra.accesskey and ep.ENDPOINTKEY = rhcl.newvalue and ug.USER_GROUPNAME = ep.CUSTOMPROPERTY33
11/21/2023 09:09 PM
Hi @rushikeshvartak ,
With custom query block how can we auto-reject the request if entitlements from app3 is added?
11/21/2023 09:14 PM
You can call custom action block and have jar added to discontinue the request