Vulnerability in EPiServer.Forms
Is it just me or is it neccessary for everyone in an approval workflow to have edit and publish rights?
What I am wanting is a sequential approval workflow where we have editors, approvers and finally a publisher. The editor creates (but can only save and not publish), the approver approves (but cannot edit or publish) and finally the publisher has the right to approve and publish. When I try to create an auto workflow off of a PageSave event it does not allow me to start it if the approver does not have edit or publish rights. This sort of defeats the object of sandboxing the publish and edit rights away from those who shouldnt have them.
Any ideas very welcome
Bumping this because I'm looking for the same thing.
Did you get anywhere Ted?