Clarity: Project View Financial and Non-Project Investment (NPIO) View Financial rights only work on the Financial sub-page

Document ID : KB000050488
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

The user-defined and stock attributes created on the 'Project Financials Properties' object are secured properly when accessed on the Project > Financial subpage, but are not secured properly when accessed from the Project List View or other Project Property subpages. Similar behavior is seen for Non-Project Investments.

We are using the following Financial security access rights in combination with the 'Project - Edit Management - All' right.

The Project Edit Management right should not encompass the financial properties rights.

Project - Edit Management - All

Allows user to edit the general and management properties, staff and tasks for any project that has been enabled for management. This includes the ability to add sub-projects to that project as well as to edit it in Microsoft Project and Open Workbench. This right also allows the user to create processes on any project and to edit the processes that he or she creates.

Project - Edit Financial - All
Allows user to view and edit general properties, processes and financial information on all Projects. Also allows the user to enable financial fields on a Project.

Project - View Financial - All
Allows user to view the general and financial properties and processes on all projects. This right does not include the right to view the financial plan (budgets/forecasts).

In exploring the behavior of these rights with respect to user-defined attributes it appears that the two rights only affect fields placed on the Project > Financial Properties subpage.

If we place the user-defined or stock attributes on the Project List View or other Project Property subpage, and if the end-user has the ability to edit the project, these financial user-defined or stock attributes can be edited in these other places.

Steps to Reproduce (Setup):

  1. Admin Tool > Objects: Project Financial Properties (projfinproperties)
    Create a new attribute (myProjectFinancialAttribute100)
    Figure 1

  2. Objects: Project > Views > [Layout:Edit] > Financial sub-page
    place the new attribute on this page

    Figure 2

  3. Views > Project List Column [Layout]
    place the new attribute on this list view and one of the stock financial attributes such as 'WIP Class'

    Figure 3

  4. Admin Tool > Resources > 'Resource1'
    Global Rights:
    Project - Edit Financial - All
    Project - Edit Management - All

    Figure 4

  5. Admin Tool > Resources > 'Resource2'
    Global Rights
    Project - View Financial - All
    Project - Edit Management - All

    Figure 5

Steps to Reproduce (Resource1):

  1. Login as 'Resource1' (with Edit Financial rights)

  2. Main Application > Projects > click the project name for any project and navigate to the Financial subpage

    Note: the fields are open for editing as expected

    Figure 6

  3. Return to the Project List View > [--Actions--] > Edit Mode

    Note: the fields are open for editing as expected

    Figure 7

  4. Logout

Steps to Reproduce (Resource2):

  1. Login as 'Resource2' (with View Financial rights)

  2. Main Application > Projects > click the project name for any project and navigate to the Financial subpage

    Note: the fields are NOT open for editing as expected

    Figure 8

  3. Return to the Project List View > [--Actions--] > Edit Mode

    Figure 9

Expected Result: The 'Project Financials Properties' Object attributes should be secured in all places

Actual Result: The attributes are not secured by the 'Project - View Financial - All' right in all places

Additional testing:

Add the user-defined and stock attributes to other Project Property subpages. When the end-user navigates to these other pages within the project, since they have the ability to edit the project instance, these fields are also open for editing on these other subpages.

Non-Project Investment Financial Properties:

Similar behavior is seen for Non-Project Object Investment Types (NPIOs): Asset, Application, Product, Other Work, Service (not Idea)

Steps to Reproduce (Setup):

  1. Login to Clarity as an Administrator User

  2. Admin Tool > Resources > Select 'Resource2' > Global Rights

    Select and Add the following rights for the NPIOs:

    Application - Edit - All
    Application - View Financial Information All
    Asset - Edit - All
    Asset - View Financial Information All
    Other Work - Edit - All
    Other Work - View Financial Information All
    Product - Edit - All
    Product - View Financial Information All
    Service - Edit - All
    Service - View Financial Information All

    Figure 10

  3. Logout

Steps to Reproduce (Resource2):

  1. Login as 'Resource2'

  2. Main Application > Services List View > click on the name of an existing Service Investment

    Navigate to Financial subpage (odf_view=npiofinproperties.serviceCreate)
    Actual Result: Fields show open for editing, but the 'Save' and 'Submit' buttons are not present

    Figure 11

    Click 'Cancel' button
    Services [--Actions--] Edit Mode
    Actual Result: The financial fields are open for editing and values can be saved

    Figure 12

  3. Navigate to Applications List View > click on the name of an existing Application Investment

    Navigate to Financial subpage (odf_view=npiofinproperties.applicationCreate)

    Actual Result: Fields show open for editing, but the 'Save' and 'Submit' buttons are not present

    Figure 13

    Click 'Cancel' button

    Applications [--Actions--] Edit Mode

    Actual Result: The financial fields are open for editing and values can be saved

    Figure 14

  4. Navigate to Assets List View > click on the name of an existing Asset Investment
    Navigate to Financial subpage (odf_view=npiofinproperties.assetCreate)
    Actual Result: Fields show open for editing, but the 'Save' and 'Submit' button are not present

    Figure 15


    Click 'Cancel' button
    Assets [--Actions--] Edit Mode
    Actual Result: The financial fields are open for editing and values can be saved

    Figure 16

  5. Navigate to Products List View > click on the name of an existing Product Investment
    Navigate to Financial subpage (odf_view=npiofinproperties.productCreate)
    Actual Result: Fields show open for editing, but the 'Save' and 'Submit' buttons are not present

    Figure 17


    Click 'Cancel' button
    Products [--Actions--] Edit Mode
    Actual Result: The financial fields are open for editing and values can be saved

    Figure 18

  6. Navigate to Other Work List View > click on the name of an existing Other Work Investment

    Navigate to Financial subpage (odf_view=npiofinproperties.otherCreate)
    Actual Result: Fields show open for editing, but the 'Save' and 'Submit' buttons are not present

    Figure 19

    Click 'Cancel' button
    Other Work [--Actions--] Edit Mode
    Actual Result: The financial fields are open for editing and values can be saved.

    Figure 20

Solution:

WORKAROUND:

None.

STATUS/RESOLUTION:

Resolved in Clarity 12.1.3
Resolved in Clarity 13.0.1, 13.1.0

Keywords: CLARITYKB, CLRT-61986, CLRT-61985, CLRT-58196, clarity12resolved, clarity1213resolved, odf_view, finpropertiesUpdate, projmgr, projectproperties, odf_view=finpropertiesUpdate.projectCreate, nmc.userGlobalAssoc, revmgr, clarity13resolved, clarity1301resolved, clarity1310resolved.