Permissions

Permissions, policies and roles are configured in AireIdentity.

Resource Restrictions

Resource restrictions are used to restrict access to specific resources based on the user's roles. They are defined by using the policy feature in AireIdentity.

Example: Task Editing

Given you have a task with the key my-task within a workflow with the key my-workflow.

You can define the following statements:

• Workflow/* - This targets all edits to all tasks from all workflows.
• Workflow/my-workflow - This targets all edits to all tasks from my-workflow.
• Task/* - This targets all edits to all tasks.
• Task/my-task - This targets all edits to my-task.
• Task/*/Property/Assignee - This targets edits to the assignee for all tasks.
• Task/my-task/Property/Assignee - This targets edits to the assignee for my-task.
• Task/*/Property/Status - This targets edits to the status for all tasks.
• Task/my-task/Property/Status - This targets edits to the status for my-task.
• Task/my-task/Property/Status/Cancelled - This targets edits transitioning to the Cancelled status for my-task.
• Property/Assignee - This targets edits to the assignee for all tasks.
• Property/Status - This targets edits to the status for all tasks.
• Property/Status/Completed - This targets edits transitioning to the Completed status for all tasks