User task access restrictions

caution

User task access restrictions are enabled by default and can be disabled using the userAccessRestrictionsEnabled Tasklist environment variable. This configuration does not affect API users. When retrieving tasks using the APIs, all tasks are returned.

User task access restrictions are used in Tasklist to control task access for a user or a group. The currently logged-in user needs to be either in the Assignee field, in the Candidate users field, or a member of the Candidate groups as defined in the BPMN definition to see the task in the Tasklist.

For example, if a task has a candidate group named Team A and a candidate user named example, only the users that belong to Team A and the user example will have access to the task.

See Tasklist authentication documentation on user task access restrictions for a more detailled description.