Access control
If authorization control is enabled for your Orchestration Cluster, users require the following authorizations to work with Tasklist.
note
You can assign these in the Identity UI. See the introduction to authorizations for a list of all available authorizations.
Mandatory authorizations
The following mandatory authorizations are required to work with Tasklist:
| Authorization type | Resource type | Resource ID | Permission |
|---|---|---|---|
| Component access for Tasklist | Component | tasklist or * (for access to all web components). | ACCESS |
| Read user tasks | Process Definition | ID of the respective BPMN process definition or * (for all process definitions). | READ_USER_TASK |
Optional authorizations
The following optional authorizations can also be defined:
| Authorization type | Resource type | Resource ID | Permission |
|---|---|---|---|
| Assign and complete user tasks | Process Definition | ID of the respective BPMN process definition or * (for all process definitions). | UPDATE_USER_TASK |
| View BPMN diagrams | Process Definition | ID of the respective BPMN process definition or * (for all process definitions). | READ_PROCESS_DEFINITION |