vtb tasks are being hidden

Jonathan Brown · ‎01-20-2017

Hello.

We have Virtual Task board members who are not able to see various tasks Assigned to him/her from the owner. I was able to create a user and add him to the board and could duplicate the view board member view. There are tasks missing. If i get give the created board member admin it can see all the tasks. so i am guessing its a role permission but having no luck identifying it.

The task is assigned to the board member as primary and I verified the board member is a board member.

Is the owner able to hide select tasks from certain members?

Patrick Schult2 · ‎01-24-2017

When you use security debugging, note the "PATH" for each thing being evaluated. Your screenshot shows a failed ACL for the sys_history_set table, which is a symptom of a problem, sure, but it's not what you are looking for right now. Look for failed ACLs with a PATH of "record/vtb_card/read" or "record/incident/read" or whatever table you are evaluating.

You haven't mentioned yet, but just because it's a Visual Task Board, that doesn't mean you automatically know which table you want. Freeform boards use the vtb_card table, but a Guided or Flexible board could use any of the task tables.

Jonathan Brown · ‎01-24-2017

This is for a freeform VTB

I thought by clicking one each it would tell me the acl I need to update? but I only still see snc_internal... which all the users have. Any none admin can not see some of these cards. The same ones are hidden which is at least one consistent thing. Only the owner and admins can see the rest.

Patrick Schult2 · ‎01-24-2017

If you click on the "record/vtb_task/read" link there, you will see the ACL that was failed/passed, and that should explain straight up why the person you are impersonating cannot view it. Users with the admin role pass ACLs by default (unless the specific ACL has been configured to not let admins pass).

I'd recommend looking at the ACL to make sure it reflects the OOB configuration, and if it does, go into the VTBBoardSecurity script include and see if it thinks your impersonated user should be able to read.

There's a clear solution to this problem, and you're getting closer. Now that you know which ACL is failing for this user, you just need to follow it a little bit. Obviously, we can't get into your instance to diagnose this problem, but if this person is a member of this VTB, and your VTBBoardSecurity script include + vtb_card/read ACL isn't customized, you may have found a bug that's worth opening a HI ticket for.

Jonathan Brown · ‎01-24-2017

i have checked..

If i am reading and understanding this to read the vtb_task and vtb_card you just need the snc_internal role.

And all the users have that role.

Patrick Schult2 · ‎01-24-2017

Looks correct to me. I think by this point you've already checked that the user in question has snc_internal, and verified that they are a listed member of the board, so it's probably time for you to get a ticket open with HI. My configuration looks the same as yours and zero problems here.