Chapter 5. Security 101
example, in the sample application, we define the Draft state with this option
selected. This means that users can add a new sales proposal in the system with
its state set to Draft. You can choose not to add documents into just any state.
For example, the Issued state usually represents documents that have gone
through the approval process and are published for general consumption. For
the Issued state definition, you do not want to check this option because you do
not want users to add proposal documents with Issued state; otherwise, the
proposals have bypassed the approval process set by company policy.
New revisions can be created as this state option allows you to start a
revised copy of a document at this state. This is a security feature because you
want to be selective where in the document life cycle you allow the user to start a
revised copy of the document. For example, in the sample application, the life
cycle of a sales proposal is: from Draft to Review to Approval to Issued. We want
the revise sales proposal document to begin its lifecyle at the Draft state because
that is the business rule. It is a violation of the business rule to allow a revised
copy to begin at another state. In the Draft state definition, we select this option.
In any other states, this option is not selected.
The last option,
Apply all access privilege modifications to single-parent
children of same or stateless class
, allows the system to apply the parent’s
security setting to the children if the children have only one parent (the current
item) with the same class affiliation as the parent or are of a stateless class.
Figure 5-3 shows you the State Configuration window for the Draft state from the
Document Manager Designer.