E-PIA: Configurable Search Overrides Security Access To Pages
(Doc ID 3026867.1)
Last updated on OCTOBER 21, 2024
Applies to:
PeopleSoft Enterprise PT PeopleTools - Version 8.60 and laterInformation in this document applies to any platform.
Symptoms
Search Configuration overrides security access to pages once configured
In PT8.60.12, users noted that when using generic IDs that have access to only one or the other access (Add a New Value, or Search) they were being given the wrong page based on security.
For instance, if User A only has access to Search but Search Configuration is configured that 'Add a New Value' is defaulted, it will force 'Add a New Value' to be the default for the user even though they do not have proper security to access that page. This causes a variety of different errors depending on what type of search is configured (Standard vs Keyword).
ERROR
-----------------------
Invalid peoplecode errors.
STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Create a generic user with only 'Search' or 'Add a New Value' access to the tested component
2. Configure the tested component in 'Search Configuration' with either 'Standard Search' or 'Keyword Search' as the search type, everything can be left as the defaults. In the test scenario, 'Add a New Value' is defaulted. So we used a user with only 'Search' access.
3. Navigate to the configured component with the user with only 'Search' access and note the error/incorrect display.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |
| References |