sitecore workflow permissions - workflow

on the Sitecore Workflow and Security reference data sheets, i see these:
Workflow State Delete controls whether or not a security account (user or role) can delete items which are currently associated with a
specific workflow state
Workflow State Write controls whether or not a security account can update items which are currently associated with a specific
workflow state
Workflow Command Execute controls whether or not an account is able to view workflow commands
So, i'm on the Security Editor, adding permissions to my creator and publisher roles, so it really makes sense to me adding Delete and Write permissions to individual workflow states, but i don't see an Execute column for commands. How am i supposed to set these permissions for the roles?

The image below should answer your question:

Related

Restrict User Access to Board from Azure DevOps

As a DevOps administrator I want to give restricted access to the backlog of our project to a user.
I want to limit his access. Meaning that the user can only see Work Items he has created in the backlog, nothing else.
Is their a way of doing this?
the user can only see Work Items he has created in the backlog,
nothing else
I am afraid that this feature you want is not feasible.Boards is visible to all members of your organization.
You can only set the member to Project Readers at most, so that members only have read permissions but no modified permissions.
You can set the Assign to filter condition in the Filter of the backlogs to see the work items assigned to a specific person, but it can't prevent the user from viewing the work items assigned to others. In addition, there is no filter condition to see who created the work items.

How to set default permissions for every new Github repository within an organization?

We have quite a few repositories in our organization, and we are constantly adding more. We also have a few different teams - Superusers, Developers, Contractors, etc. I want every newly created repository to automatically assume default permissions, like Superusers get automatic admin access to the repo, Contractors group gets just read access, etc. Is it possible to set that up? Is there a setting somewhere that I missed? And if there's not a way to do that, is there a way to batch apply a permission for one group to all repos within an account?
Update June 2017: with nested teams, you now can associate permissions to sub-teams, which could help group of users to have the correct right regarding a repo part of the organization.
Original answer (Apr. 2016)
Is it possible to set that up?
I did not see a way through the native GitHub web GUI administration pages.
And "permission" is deprecated when creating a team.
What you could consider though is a webhook listening for a an event, like a repository event.
That script listening to the event could then use the Team API to update the permission of the teams (according to their names) for the newly created repo.

AEM Workflow process steps should not be shown to user after initiation

I have configured the workflow for a particular user group(author), who can only initiate the workflow, rest of the workflow steps should not be shown to user. In the current scenario if I am giving user to execute the workflow then all the process steps are showing in his page. I want to restrict the author to perform other process steps, they should only initiate the request only.
Please provide more information in the user group privileges so that I can allow or deny these rights to particular user.
thanks in advance
To restrict access for users from this group to all steps (except triggering workflow), these steps should be assigned to other participant (like administrators group).
You can assign the steps to the wf initiator or you can use other participant selector and there you can specify the assignee of the workflow. This way you can define which groups have access to the dialog.

Restricting user to view only specific reports?

I'm working on JasperReports Server community edition.
I need to configure it so, that after logging in a user can only see specific reports, otherwise s/he should not see any other folder/resource.
As per Jaspers permission Guide, it should work with this solution but does not work somehow.
A new role eg "TEST_ROLE" was created by jasperadmin.
A new user "TEST_USER" was created and the role "TEST_ROLE" was assigned to him/her.
Now for the "TEST_ROLE:
For Repository root, permission No Access was set.
only on specific reports Read onlypermission was granted.
But when TEST_USER logs in, he sees below message:
You do not have permission to view this page.
Please contact your system administrator or log in as a user with permission.
Why it does not work?
Question2:- User with role "TEST_ROLE" should not be able to upgrade his permission. Is it achievable with permission Read only as I have described above?
Question3:- I did not get what's the diffence between Execute only and Read only permissions?. What I could comprehend that user can view/execute self created reports with execute only permissions?
The difference between Execute Only and Read Only is that those resources which have Execute Only cannot be 'seen' by the user but can be executed.
This becomes relevant when reports that the user can see are dependent on other resources in the repository eg datasources, domains, images etc.. .
To run the report the user must also have access to these other resources.
If you want to restrict the user to only to be able to view reports they can run then set the reports to 'Read Only' and set all dependent resources to 'Execute Only' on the relevant role.
This is what is possibly causing the permissions error you are seeing.

Dynamics CRM: how to make workflows to work for every user

I've some workflows in CRM but they work for the owner, also tried to use sharing them between users but with no result.
How to configure workflows to work for everyone (every organization, user team etc.) by default?
Sultan
In the workflow editing screen, there's a field called Scope where you can set it to either User or Organization. Setting it to Organization will make the workflow run for every user regardless of their business unit, team, etc.