Revoking Proxy Access
A proxy’s access to a transaction can be manually revoked either by a delegator (Share My Information – Details self-service page), or by an administrator (Review Shared Information – Details page) by simply deselecting a previously delegated transaction. At that moment, the transaction status is set to Ended (or marked in the record as Revoked) and evaluated to determine if the same transaction is also delegated by a different delegator. If that is the case, the logic does not remove the role associated to the revoked transaction from the proxy’s user profile—the proxy still needs to have access to the delegated components to access other delegators’ data. If no other delegators exist, then the proxy’s user profile is automatically updated. At the time of revoking the transaction, the Notifications framework is triggered to notify the proxy via email about the revoked transactions.
A proxy’s access to a transaction can also be programmatically revoked by the Proxy Access Validation (PAV) engine.
When a transaction is revoked, a revoke reason is given based on the condition it was revoked. The following table describes the various revoke reasons and how they are assigned.
Revoke Reason Values |
Where this value is set |
Who or what sets that value |
Results |
---|---|---|---|
Manual Revoke |
|
|
|
Proxy Delete |
|
|
|
Declined Terms and Conditions |
In the Proxy Terms and Conditions component when the Proxy declines the terms and conditions |
Proxy |
|
Security |
When the revoke proxy access option selected for the transaction is “Delegator no longer has access to delegate the transaction.” The following validation occurs:
|
PAV real-time logic |
|
The Proxy Access Validation batch process runs. |
PAV batch process |
|
|
Inactive Transaction |
When the revoke proxy access option selected for the transaction is “Transaction Inactivated.” The validation occurs:
|
PAV real-time logic |
|
The Proxy Access Validation batch process runs. |
PAV batch process |
|
Note: The revoke reason value can be seen only by an administrator in the Review Shared Information component. The delegator does not see the revoked transactions in the Share My Information component.