and more in a single search tool across platforms. Read the announcement here. |
11/10/2023 06:11 AM
Is there a way to restrict users from being able to request to remove the access from the ARS directly that was assigned through a role ?
In the 'Config for Selected Entitlements' option in Entitlement Types, we were not able to add any fields from any other tables other that entitlement_values.
11/10/2023 06:50 AM
@SUMAIYA_BABU : Did you try using subqueries here? and output of that query should be column related to entitlement_values.
Can you please share the query you attempted?
We definitely used another table reference successfully in "Config for Requestable Entitlement in ARS" So I believe it should work for selected entitlements as well
11/10/2023 02:33 PM
Hi Saathvik,
This is the query we have:
ev.entitlement_value not in (select ev1.entitlement_value from account_entitlements1 ae1,entitlement_values ev1,user_accounts ua where ev1.entitlement_valuekey=ae1.entitlement_valuekey and ae1.assignedfromrole is not null and ua.accountkey=ae1.accountkey and ua.userkey=${requestee}).
We also tried creating a dynamic variable at the endpoint level with this subquery and adding the dynamic variable in the entitlement type. That didnt work as well.
11/14/2023 08:38 AM
@SUMAIYA_BABU : Does this query giving expected output in data analyzer if you hardcord the requestee value?
(select ev1.entitlement_value from account_entitlements1 ae1,entitlement_values ev1,user_accounts ua where ev1.entitlement_valuekey=ae1.entitlement_valuekey and ae1.assignedfromrole is not null and ua.accountkey=ae1.accountkey and ua.userkey=${requestee})
11/14/2023 11:36 AM
yes...its working from data analyzer.
11/14/2023 12:07 PM
@SUMAIYA_BABU: Try this
ev.id in (select ae1.entitlement_valuekey from Account_entitlements1 ae1 where ae1.assignedFromRole is not null and ae1.accountkey=(select ua.accountkey from User_accounts ua where ua.userkey=${requestee}))
11/17/2023 04:32 AM
{
"PREPROCESSQUERIES": [
"IF (SELECT COUNT(*) FROM account_entitlements1 ae1, entitlement_values ev1, user_accounts ua WHERE ev1.entitlement_valuekey = ae1.entitlement_valuekey AND ae1.assignedfromrole IS NOT NULL AND ua.accountkey = ae1.accountkey AND ua.userkey = ${requestee}) > 0 THEN SET REQUEST_REMOVAL_FLAG = 0; END IF;"
]
}