<div>Gavin,</div>
<div> </div>
<div>Apologies for not responding sooner I have been on holiday.</div>
<div> </div>
<div>I have gone back and checked our 4.6C system, we haven't utilised structural auths as suggested by Jocelyn, as our control over the WI long description was restricted by normal security restrictions within user profiles. These prevent users from seeing the text if they don't have the access and also prevents them from launching transactions, PA20 in our case, through the workflow, again if they don't have the access. This was sufficient for us.
</div>
<div> </div>
<div>It doesn't restrict the info within the containers so that still there I'm afraid.</div>
<div> </div>
<div>So it may be worth playing about with the structural auths against the workflow and task and see what comes out.</div>
<div> </div>
<div>Sorry I can't be of more help, if you need anything further please do not hesitate to contact me.<br><br> </div>
<div><span class="gmail_quote">On 5/26/06, <b class="gmail_sendername">Gavin Mooney</b> <<a href="mailto:gavinmooney@gmail.com">gavinmooney@gmail.com</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">Hi Neil,<br><br>Thanks for the suggestion. Our requirement is similar to yours in that<br>some workflows will contain client data that other areas of the
<br>company shouldn't be able to see.<br><br>I hadn't thought about structural auths. I see that you can assign<br>specific workflows and tasks to the profiles, but if a person doesn't<br>have a particular workflow in their profile, what does that mean?
<br>Would it stop them from displaying the log for that workflow? LIkewise<br>if they didn't have a particular task in their profile would it stop<br>them from displaying work items based on that task?<br><br>While we would like to limit access to the entire log to a certain
<br>group of users (on a WF by WF basis), what we really need to avoid is<br>someone going to the log and looking at the contents of the<br>containers.<br><br>Thanks and regards,<br>Gavin<br><br>2006/5/26, Neil Thomas <
<a href="mailto:dneilthomas@gmail.com">dneilthomas@gmail.com</a>>:<br>><br>> HI Gavin,<br>><br>> Had a similiar issue implementing a HR Sickness Absence workflow and for<br>> obvious reasons wanted to restrict the information within the workflow log.
<br>> We were on a 4.6C system and we could not find a way of restricting the<br>> entire log to certain groups of users.<br>> What we did use, after advice from Jocelyn Dart, was that standard security<br>> profiles and structural auths limited the information people see within work
<br>> items long description but NOT the short desciption. So we has pretty<br>> generic/high level short text and the more meaningful info was in the long<br>> description.<br>><br>> Hope this helps.<br>>
<br>><br>> On 5/25/06, Gavin Mooney <<a href="mailto:gavinmooney@gmail.com">gavinmooney@gmail.com</a>> wrote:<br>> ><br>> Hi all,<br>><br>> We would like to limit users' access to the workflow log so that only
<br>> approved users can access it, and even then they can only see it for<br>> certain workflow templates. For example the finance team would only<br>> have access to display the log for "the finance workflows" (a group we
<br>> would define).<br>><br>> I have seen authorization object S_WF_WI but I don't think it helps us<br>> in this case. Has anyone faced this requirement before or have any<br>> ideas? We're on 620.<br>>
<br>> Thanks,<br>> Gavin<br>> _______________________________________________<br>> SAP-WUG mailing list<br>> <a href="mailto:SAP-WUG@mit.edu">SAP-WUG@mit.edu</a><br>> <a href="http://mailman.mit.edu/mailman/listinfo/sap-wug">
http://mailman.mit.edu/mailman/listinfo/sap-wug</a><br>><br>><br>><br>> --<br>> Best Regards,<br>><br>> Neil Thomas<br>> _______________________________________________<br>> SAP-WUG mailing list
<br>> <a href="mailto:SAP-WUG@mit.edu">SAP-WUG@mit.edu</a><br>> <a href="http://mailman.mit.edu/mailman/listinfo/sap-wug">http://mailman.mit.edu/mailman/listinfo/sap-wug</a><br>><br>><br>><br><br>_______________________________________________
<br>SAP-WUG mailing list<br><a href="mailto:SAP-WUG@mit.edu">SAP-WUG@mit.edu</a><br><a href="http://mailman.mit.edu/mailman/listinfo/sap-wug">http://mailman.mit.edu/mailman/listinfo/sap-wug</a><br></blockquote></div><br><br clear="all">
<br>-- <br>Best Regards,<br><br>Neil Thomas