This content has been marked as final. Show 2 replies
Search results will come as per the permissions given through Authorization Policy. It is based on organization only.
Suppose 10 users are created in Org1. TUSER1 to TUSER10.
TUSER11 is part of different Organization and Role1. Make Role1 as Administrative Group of Org1 then TUSER11 would be able to search all the 10 users which are part of Org1.
In mu scenario, I have configured an Authorization Policy where I have provided Constraints as "Org A" and Assign it to "All Users Role". Now, when a userA from OrgA and having only All Users role, tries to Reassign the approval task, he still sees some users(having only All Users role) from different Organization say OrgB. UserA should see only users from his own organization. This is my use case. So, the policy I have created is correct or wrong?