This appears to be a breaking change in 2019.x
ProcessView permission for the project can not longer view the process without a bunch of broken icons. This appears to be because Step icons are now restricted to require
ActionTemplateView opens up the library and allows displaying all variable values and source code for Step Templates. Which should not be required, just to have the
Niether can you deny
ProcessView as the Project ‘Overview’ tab will not display without
So there is a cascading rabbit-hole of
ActionTemplateView, where each necessarily requires the next, rendering having separate permissions pretty ineffective.
Having worked with the permissions a bunch now, there appears to be a generate design issue that permissions don’t differentiate between ‘List’ and ‘View’ as other APIs do e.g. AWS
*Describe. This leads to a whole bunch of gotcha cases such as described above.
- ProcessView should have access to the icons, or
- There should be an ActionTemplateList permission that grants access to Step names and icons, or
- ProcessView should display no icons or display generic icons if ActionTemplateView is not allowed