Hi,
I have customized a Work Item Template for some additional fields on a separate tab. Is it possible to set permissions in a way that this tab is visible only to a particular security group
Thanks,
Satyajit
Team Foundation Server - Process Templates
Hi,
I have customized a Work Item Template for some additional fields on a separate tab. Is it possible to set permissions in a way that this tab is visible only to a particular security group
Thanks,
Satyajit
This is not possible with the current version of TFS. We are looking to add this functionality in a future version. So I understand, can you explain why you want this functionality
Thanks for the prompt reply Gregg.
I am working on a multi-site, multi-vendor engagement and some of the internal processes being followed by various parties are different. Hence, we wanted to make fields hidden for certain groups so that each party can continue to use their internal procesess without any ambiguity.
Thanks,
Satyajit
Is there a way to hide the Work Item Type for certain users or groups. If we have a Budget Work Item Type, we only want the Project Managers to see it, not the Developers.
Thanks
That will work.
Thanks
Looking into this further, it looks as if this is not possable. There is not a security permission set to prevent users from viewing the work items in this area. It will still let you view them, but you cannot edit them. The permission names in the users dialog are a little misleading. "View work items in this node" is not really view work items in this node, it is really work_item_read, which lets you view and read them, but not edit or change them.
|
Permission Name |
Name at Command Line | Description |
|---|---|---|
|
Create and order child nodes |
CREATE_CHILDREN |
Users who have this permission can create new area nodes. Users who have this permission and the Edit this node permission can move or re-order any child area nodes. |
|
Delete this node |
DELETE |
Users who have both this permission and the Edit work items in this node permission for another node can delete area nodes and reclassify existing work items from the deleted node. Any child nodes under the deleted parent node are also deleted. |
|
Edit this node |
GENERIC_WRITE |
Users who have this permission can rename area nodes. |
|
Edit work items in this node |
WORK_ITEM_WRITE |
Users who have this permission can edit work items in this area node. |
|
View this node |
GENERIC_READ |
Users who have this permission have access to view the security settings for this node. |
|
View work items in this node |
WORK_ITEM_READ |
Users who have this permission can view, but not edit or change, work items in this area node. |
You can DENY "View work items in this node" and that will prevent people from even seeing the work items.
You can also never ALLOW (or GRANT) this permission, and it should do the same thing.
Does that help
Yes, that worked. I guess it did not work for me the first time, because i removed all the groups except Project Admins and TFS Admins, but all users still had access to Work Items in that area. I think that by default everybody has access. Until i added the Contributers and Readers groups and then explicitly Denyed them it didn't work.
So now, its all good, but i would like to be able to do it at the Work Item field level, so we can give users access to the work items but deny them access to a Tab, or a Budget field.
Thanks for your help.
Tom