<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Violetta,<br>
<br>
<br>
Makes good sense to me. Question, if those requestors are NOT going
to login to RT, how are they going to "open" a ticket? If you have
"CommandByMail" set up, they could do it via Email. If not, why not
have the "Owners" of the tickets open them? I guess where I am confused
is the activity you are expecting from the requestors and owners. What
we do is:<br>
<br>
Globally grant:<br>
<ul>
<li>Requestors;</li>
<ul>
<li>"ReplyToTicket" (so they can communicate via email to the owner)<br>
</li>
<li>"SeeQueue" (so they can see what tickets are in a queue)<br>
</li>
<li>"ShowTicket" (so they can SEE THEIR Ticket in the queue)<br>
</li>
</ul>
<li>Owners;</li>
<ul>
<li>"ModifyTicket" (all owners can automatically modify a ticket
they own. Keeps redundancy of this right at the queue level down)<br>
</li>
</ul>
</ul>
By Queue grant:<br>
<ul>
<li>Support team/group (those that work on the ticket);</li>
<ul>
<li>"CommentOnTicket" (anyone in the group might have an idea that
helps)<br>
</li>
<li>"CreateTicket" (anyone in the group may need to create a
sub-task/child ticket)<br>
</li>
<li>"OwnTicket" (anyone in the group can take/steal/own a ticket)<br>
</li>
<li>"ReplyToTicket" (anyone in the group can communicate via email
on a ticket)<br>
</li>
<li>"SeeQueue" (intuitively obvious)<br>
</li>
<li>"ShowOutgoingEmail" (anyone in the group can see the
communication going on in a ticket)<br>
</li>
<li>"ShowTicket" (anyone in the group can look at a ticket in the
queue)</li>
<li>"ShowTicketComments" (same as above, only about comments)</li>
<li>"StealTicket" (goes with ownership)</li>
<li>"TakeTicket" (same thing as above)</li>
<li>"Watch" (intuitively obvious)</li>
</ul>
<li>User group (all those damn requestors)</li>
<ul>
<li>"CreateTicket" (anyone in the group can create a ticket)</li>
<li>"ReplyToTicket" (anyone in the group can communicate via email
on a ticket)</li>
<li>"SeeQueue" (intuitively obvious. They have to see it to create
a ticket via Web)</li>
<li>"ShowOutgoingEmail" (anyone in the group can see the
communication going on in a ticket. This could be given JUST to the
Requestor of the queue, if you do not want other requestors seeing
email in other tickets in the queue)</li>
<li>"ShowTicket" (anyone in the group can look at a ticket in the
queue or jsut the requestors in the queue. see above)</li>
<li>"ShowTicketComments" (same as above, only about comments. Could
keep this at the requestor level as well)</li>
<li>"Watch" (intuitively obvious)</li>
</ul>
</ul>
<br>
That's what we do, but our granularity of control may be different
than yours, especially if your requestors are NOT signing into RT.<br>
<br>
I hope this helps.<br>
<br>
Kenn<br>
LBNL<br>
<br>
On 5/14/2009 1:45 AM, Violetta J. Wawryk wrote:
<blockquote cite="mid:4A0BDA34.2070902@science-computing.de" type="cite">Hi
Ken,
<br>
<br>
thanks for replying.
<br>
<br>
I will try to describe it more clearly.
<br>
<br>
The RT has different Queues, let's say Queue A and Queue B.
<br>
<br>
We don't want the AdminCCs of queue A to know about the existents of
queue B and vice versa. This is possible because we don't allow
"Everybody" to "Open Tickets" in the certain Queues, just the group
"AdminCCforQueueA" for queue A and group "AdminCCforQueueB" for queue
B.
<br>
Otherwise they could see the Ticket in RT on the top right corner where
it says "New Ticket in" (hope you know what I mean).
<br>
<br>
But there are still Requestors for queue B that are not AdminCCs, they
will not login to the RT to look at their Tickets. Since they are more
than 100 of them, and there EMail addresses end with the same domain
name we hoped there would be the possibility of a wild card. So every
Requestor that writes to that queue and has that domainname can open a
Ticket.
<br>
<br>
I hope this makes it more clear now.
<br>
<br>
Thanks,
<br>
Violetta
<br>
<br>
<br>
Ken Crocker schrieb:
<br>
<blockquote type="cite">Violetta,
<br>
<br>
I can help, but it's still not clear to me what you want. You say
you only want the Admins (I'm assuming here you mean the AdminCc
Watcher for the Queue) to "See the Queue" and then you mention
something about the users "can change it". Change what? If you only
want AdminCcs to see the queue, how do you expect a User to see a
ticket and change it. I'm confused. I can tell you how to set the
privileges so that the USers can create tickets via Email and NOT see
the Queue, but I really do not understand what you're looking for.
Please give me a more concise description of your Queue setup/usage and
what you want and then I can help.
<br>
<br>
<br>
Kenn
<br>
LBNL
<br>
</blockquote>
</blockquote>
</body>
</html>