Read And Discover Access In Collaboration Tab In PPM (Doc ID 2199178.1)

Last updated on AUGUST 08, 2017

Applies to:

Oracle Agile Product Portfolio Management - Version 9.3.4.0 and later
Information in this document applies to any platform.

Symptoms

Read and Discover access in Collaboration Tab in PPM

We had configured the system security for discussion/action items like "user is only able to discover the discussion if he is in the notify list or the creator" it is working fine if we create the discussion and action item in the Agile PLM Product Collaboration module but, when added in the PPM Agile Product Portfolio Collaboration tab the user is able to discover and read the all discussions, even though the user is not in the notify list.

This will create issues with the user security especially the external users.

EXPECTED BEHAVIOR
-------------------------------------
Expect the user to not have access to discover and read all discussions, when the user is not in the notify list within the PPM Collaboration Tab.

STEPS
-----------------------
The issue can be reproduced at will with the following steps:
ADMIN - create user srudolph
======================
Logon to PPM Agile 9.3.4 Web Client as admin
create user ie: srudolph with the following Roles:
Creator can read and discover object he or she created
Discussion Participant
My User Profile
Program Team Member

ADMIN - create user mary
====================
Logon to PPM Agile 9.3.4 Web Client as admin
create user ie: mary with the following Roles:
Creator can read and discover object he or she created
Discussion Participant
My User Profile
Program Team Member

ADMIN - create project
==================
Create a Project:
Click on Create New | Programs | New
Type: Project
Name: Testing Security for action item
Project State: Proposed
Click on Save button

ADMIN - create discussion
====================
Create a Discussion:
Click on Create New | Discussion
Type: Discussion
Subject: Testing for Pepsi
Message: Testing for Pepsi
Priority: High
Notify List: srudolph
Click on Save button

ADMIN - add srudolph as a program team member
=====================================
Bring up the new Project you just created
Click on Team Tab
Click on Add
Members to add: srudolph
Roles: Program Team Member

ADMIN - add discussion to project
=========================
Bring up the new Project again
Click on Collaboration Tab
Click Add button
Enter the discussion you just created: ie; D00034

MARY - view discussions
====================
Logon PPM Agile 9.3.4 Web Client as user that is not added to the Notify List for example mary
enter the Discussion number you just created ie; D00034 in the quick search
Results: the discussion does not display the discussion
at the bottom of the window receive message "0 of 0 rows selected 19 rows cannot be viewed due to insufficient privileges. { This is Good! }

But when you bring up the Project | Collaboration Tab
D00034 shows as a row { PPM should not be showing the Discussion }
Click on the D00034 row Click on the Subject link receive "Error You do not have the Read privilege" Click the OK button { This is Good! }
Click on Join button receive the message 1 of 1 discussions cannot be joined due to insufficient privilege. { This is Good! }
With the D00034 row highlighted, you can see the Discussion message and who created the discussion is grayed out at the bottom of the Window Pane { This is NOT Good! Should not be showing the discussion message }

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms