User with OOTB Approve permission cannot update or approve tasks when task list Item level premissions is edit access: only their own
I found this issue and I am not sure if this is how the OOTB Item-Level Permission is supposed to work.
Environment: MOSS Enterprise, IE7
I have two issues around the task list:
I have a task list where the item level permission is set to edit access: only thier own.
A user who has the ootb permission level Approve or less can click on Edit Item for an item which is assigned to them but not created by them. The edit page opens and they can make modifications. However when they click OK they get the screen: Error Access Denied.
The other issue is similar in that the task list is setup the same way. This time the user is assigned an automated workflow task as part of the approval workflow. When they try to approve the item in the task list where the item level permission is set to edit access: only their own, a new page opens and displays:
Please wait while your task is updated...
You will be redirected to the previous page after the update is complete.
And then it does this for oh I dont' know... ever. The only way out is to click on the link to the pervious page. I checked the hidden logs for the workflow history and nothing is added to this list indicating that you clicked the Approve button.
Tutte le risposte
- If you set the "Edit Access" to "Only their own", contributors and approvers will only be able to edit the tasks they created themselves.
Owners are able to edit all the tasks even those they did not create no matter whether the tasks were created by a workflow or manually.
This rule applies to all the lists where you specify the edit access to "only their own".
Best Regards That's not quite right... Unless we are miscommunication and I apologize is that's the case I think we are..
The correct way to set approval and only allow Only users who can approve items (and the author of the item)" is by using the Versions Settings Portal > Documents > Settings > Versioning Settings the radio button to choose "Only users who can approve items (and the author of the item)" is only lit up is only Lit Up when Require content approval for submitted items? is set to yes. Also, you should create minor and major versions. This way drafts will only show up to the owner and approver...
In addition, if you add an Approval WF by going to Portal > Documents > Settings > Workflow settings > Add or Change a Workflow > Choosing Approval > Naming The WF > Clicking Start this workflow to approve publishing a major version of an item > Choose next > Enter the Relavent info > and Choose After the workflow is completed: Update the approval status (use this workflow to control content approval)
The method described above will allow users to make make changes to documents or lists, and only the editor and the approver can view the draft, the approver will recieve an email to revie wthe document, and they always reject users who should not be making changes..
Also, as part of the SharePoint Development Kit there is a WF "Confidential Approval WF" that locks down the document and or list item so that only the owner and the approvers can view the approval tasks, and the document or list item....
-Ivan
Ivan Sanders http://linkedin.com/in/iasanders http://dimension-si.com/blog- For an approver to approve items in a list where the item level permission is set to edit access:only their own, approver must have "Manage list permission"also. User with Manage list permission can edit all items(created by other users too) and also approver must have edit permission on the item to approve that item.
- When creating a new permission level Site Settings > Permissions > Permission Levels > Add a Permission Level > & granting the approve items list permission, you will automatically be given the View & Edit Items list permission, along with the View and Open Site Permissions... If you are dsiscussing the Default Approve Permission Level Site Settings > Permissions > Permission Levels > Edit Permission Level > Approve. The Manage List permission is not granted. Approvers do not have the permission to Create and delete lists, add or remove columns in a list, and add or remove public views of a list
I have included a link to the SharePoint OOTB permissions matrix below...
http://dimension-si.com/downloads/Shared%20Documents/Client/SharePoint_Permissions_Matrix.xlsx
-Ivan
Ivan Sanders http://www.linkedin.com/in/iasanders http://dimension-si.com/blog - thnx for the link :)
By default Appprover don't have Manage List permission, providing Manage list permission would allow them to edit and approve other users items. But giving Manage list permission will give them additional permissions(create , delete list.....) therefore instead of setting "edit access:only their own", views can be used to show users only their own items and setting permissions on view( http://spviewpermission.codeplex.com/ ) or item level permission can be set.
