System Actions

System actions are actions that a user may wish to perform at runtime but that need to be authorized, or need to be restricted to users with a certain level of authority.

These actions might include, for example re-allocating work-items, skipping work-items, viewing another user’s work list, or administering resources.

This authorization is implemented by associating system actions with privileges within Organization Modeler. See Capabilities and Privileges for more details about privileges.

In Organization Modeler:

In all these cases you can associate a system action with one or more privileges. As described in Capabilities and Privileges, privileges can have qualifiers which determine the level of the privilege. At run time, only users who hold the associated privilege with any required level of qualifier (or if more than one privilege is associated with a particular system action, users who hold all the associated privileges) are then allowed to carry out that system action.

Note: As well as possessing the correct privileges, users may need to belong to an appropriate user access set in order to perform a particular system action.
Note: The Organization Admin system action along with resource admin, ldap admin, and system administration system actions allows the user to see organization models other than the one they are part of, and allows them to view process instances started by members of these organizations.

At runtime, BPM maintains a list of system actions and of privileges, as defined in the organization model, and thus determines whether a user is authorized to carry out a particular action.

For more information about system actions, see System Actions Reference in the TIBCO® BPM Enterprise Application Designer's Guide.