Restricting access to status changes

When mobile workers manage work orders, they must have the authority to change the status of work orders. You can set up privileges for users by group. The user and group association are retrieved from Maximo® Asset Management during authentication.

Before you begin

Before you edit the application definition file, app.xml, back up the source control files inside a source repository.

About this task

By default, all users of an app can change the status values for work orders. You might want some tasks, such as approving work orders, to require authorization by specific groups of users.

To provide users with the right level of access, you can modify the conditional elements in the application definition file for the app. You apply conditions to the predefined security groups in Maximo Asset Management. The predefined security groups are ANYWHERE_TECHNICIAN and ANYWHERE_APPROVER.

Procedure

  1. In the Security Groups application of Maximo Asset Management, add users to the predefined security groups.
  2. From the Anywhere\MaximoAnywhere\apps\app_name\artifact directory, open the app.xml file.
  3. In the app.xml file for the app, specify the conditions to make status changes.
  4. Save the app.xml file.
  5. Build and deploy the app.

Example

You use the alias command to filter the list of available statuses. You also use the requiresRole attribute to specify the group of users. The code in the app.xml file includes a set of aliases that are surrounded with comment delimiters.

If you require a status change to be accessible by a specific group, add only that alias to the app.xml file. For example, to specify that only the ANYWHERE_APPROVER group can approve work orders, add the following lines of code to the app.xml file:

<conditions>
<executionOf alias="APPR" requiresRole="ANYWHERE_APPROVER"/>
</conditions>