SmartObject Security Delete and Publish option Deprecated
KB002667
PRODUCT
Beginning with K2 Cloud Update 6 and K2 Five (5.2), the SmartObject delete right is only available when using the Authorization Framework. In K2 Cloud Update 7, the SmartObject publish right is deprecated and is now the Create right in the Authorization Framework. Use this article to recreate permissions to delete and publish (create) SmartObjects if you've used this in previous releases.
In the K2 Cloud Update 6 and K2 Five 5.2 release, the Delete right in the SmartObject Security node in K2 Management is deprecated, and all Delete rights are reset on upgrade. You can recreate these rights using the Authorization Framework.
After upgrade, the Delete right is set to Allow on the Everyone role (which includes all users) on all objects as shown here.
Any Delete rights that you configured using the SmartObject Security node prior to upgrade are no longer applied and the Delete option in the SmartObject Security node is disabled as shown here. Use the disabled Delete permissions in the SmartObject Security node in K2 Management as a reference when reapplying delete permissions after you upgrade.
To recreate delete rights for SmartObjects, use the Delete permission of the Authorization Framework.
Recreate Delete Rights Post Upgrade
To recreate SmartObject Delete rights after upgrade, follow these steps:
- Browse through your SmartObjects on which you previously configured the Delete right, and make note of the users, groups or roles to which you granted this right.
- On each SmartObject that you configured these rights, break inheritance and remove the Delete right from the Everyone role.
- Grant Delete rights to users, groups, and roles that you had previously configured on each SmartObject. K2 recommends granting these rights to groups at the category level for easier maintenance.
In the K2 Cloud Update 7, the Publish right in the SmartObject Security node in K2 Management is deprecated, and all Publish rights are reset on upgrade. You can recreate these rights using the Authorization Framework.
After upgrade, the Create right is set to Allow on the Everyone role (which includes all users) on all objects as shown here.
Any Publish rights that you configured using the SmartObject Security node prior to upgrade are no longer applied and the Publish option in the SmartObject Security node is disabled as shown here. Use the disabled Publish permissions in the SmartObject Security node in K2 Management as a reference when applying Create permissions after you upgrade.
To recreate Publish rights for SmartObjects, use the Create permission of the Authorization Framework.
Recreate Publish Rights Post Upgrade
To recreate SmartObject Publish rights after upgrade, follow these steps:
- Browse through the SmartObject Secuirty node on which you previously configured the Publish right, and make note of the users, groups or roles to which you granted this right.
- On the Categories node, break inheritance and remove the Everyone role.
- Grant Create rights to users, groups, and roles that you had previously configured in SmartObject Security node, on the Categories node. K2 recommends granting these rights to groups at the category level for easier maintenance.
