Restricting Client Access to Workflows

You can control client access to Workflow Processes by setting the Restrict Client Access for WFs system preference to TRUE. The purpose of setting this system preference to TRUE is to prevent Workflow Processes from being called over SOAP/UI (for example, from the browser console using the Workflow Process Manager). Typically, if the Workflow Process Manager is permitted as a Business Service, then every Workflow Process can be called, which could pose a security risk.

If the Restrict Client Access for WFs system preference is set to TRUE, then all Workflow Processes are blocked from being called over SOAP/UI by default. You must then unblock the particular Workflow Processes that you want to access by adding them as Application User Props (ClientWorkflowNameX) for the applications where you want to allow the Workflow Processes.