Idea ID 2808747
This is a repost of this legacy ER in Idea Exchange:
QCIM8D102473 When using "assign to..." over an incident, we should be able to limit which users and groups are seen
Currently, when an OBM user has "Assign to..." permissions for an event (Permissions / Operations Console / Events / Life Cycle Operations / Assign to), when the user wants to change the assigned User or Group of the event, the full list of users and groups defined in OBM can be seen:
This can be a privacy problem in cases when not all the users need to know what users exist in other groups and also when they do not need to see what other groups exist.
This could be the case, for example, when OBM is used to service several end-customers, each of which do not need to know of the existence of other customers and the operators of other customer.
Therefore, OBM should be improved to have two additional permissions that limit the "Assign to" permission:
- Assign only to users in the same groups that the user belongs to / Assign to any user
- Assign only to groups the user belongs to / Assign to any group
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.