Question

No error for service activity with "Allow direct invocation from the client or a service" unchecked

Currently in our application (pega 7.2.1) we are calling one activity from HTTP service. In the activity "Allow direct invocation from the client or a service" is unchecked. I am curious to know how it is working without any error. It should throw security error at the time of invoking the activity

Comments

Keep up to date on this post and subscribe to comments

May 1, 2019 - 3:10am

is there any explanation or is my understanding wrong ?

Pega
July 4, 2019 - 5:24am

Hi,

For making service activity to be used by authenticated user, you need to go security tab of the service activity. You need to check the checkbox "Require authenticatoin to run". Also, you need to have "requires authentication" checkbox in the Service Package. 

July 4, 2019 - 7:53am
Response to ramau

what is the use of "Allow direct invocation from the client or a service" check box. Can I uncheck the option and call the activity form any service.