Variable tagging
Variable tagging allows developers to hint jBPM for extra behavior to a specific process variable. Tags can be used by process or case instances. Tags are simple String values that are added as metadata to a specific variable. A process/case instance variable can have multiple tags associated with it. By default, jBPM supports a few out-of-the-box tags.
|
❗
|
You’re not limited to these out-of-the-box tags. You can also create your own custom tags. |
These tags are predefined and can be selected directly.
-
required - A process variable tagged as required, instructs the jBPM engine that once starting a new instance, this variable must be supplied. Same for case management, the required variable must be present when starting a case. Otherwise, a VariableViolationException is thrown.
-
readonly - A process variable tagged as readonly, can only be set once during the process instance execution. In the same way, for case management, readonly variables can only be assigned once (either before starting the case or after started). If at any time, there is an attempt to change its value, a VariableViolationException is thrown.
As a developer, you can add any String as a tag for a process/case instance variable, apart from out-of-the-box ones. It allows that this information is then available via event listeners. This is due to ProcessVariableChangedEvent interface has added these two methods:
/**
* List of tags associated with variable that is being changed.
* @return list of tags if there are any otherwise empty list
*/
List<String> getTags();
/**
* Determines if variable that is being changed has given tag associated with it
* @param tag name of the tag
* @return returns true if given tag is associated with variable otherwise false
*/
boolean hasTag(String tag);Custom tags may be also added to the process or case by means of Business Central, introducing a non-predefined value for the target variable.
|
💡
|
Variable tags can also be handled into the bpmn files, as they are defined as metaData under the customTags node |
<bpmn2:property id="myTaggedVariable" itemSubjectRef="_myTaggedVariableItem">
<bpmn2:extensionElements>
<drools:metaData name="customTags">
<drools:metaValue><![CDATA[required, myTag]]></drools:metaValue> <!--(1)-->
</drools:metaData>
</bpmn2:extensionElements>
</bpmn2:property>-
multiple tags (out-of-the-box and/or custom-specific) are allowed
Other useful behavior for variable tagging is to enforce any security restrictions based on custom tags associated with these variables. Again, this can be achieved by registering an additional event listener that can react on beforeVariableChange event to apply different security constraints.
There is a special tag, named restricted, that can be used with the provided VariableGuardProcessEventListener for granted permission to modify that variable based on the required role and the current role of the user (obtained from the configured Identity Provider).
This VariableGuardProcessEventListener extends from DefaultProcessEventListener and supports two different constructors (with explicit custom tag or without it -i.e, considers restricted as default tag):
public VariableGuardProcessEventListener(String requiredRole, IdentityProvider identityProvider) {
this("restricted", requiredRole, identityProvider);
}
public VariableGuardProcessEventListener(String tag, String requiredRole, IdentityProvider identityProvider) {
this.tag = tag;
this.requiredRole = requiredRole;
this.identityProvider = identityProvider;
}So, basically the event listener must be added to the session with the allowed role name and the identity provider that returns the user role:
ksession.addEventListener(new VariableGuardProcessEventListener("AdminRole", myIdentityProvider));VariableGuardProcessEventListener will react before variable change to check if the variable has tagged with a security constraint tag and in this case, it will raise a VariableViolationException if the user role is not the required one.
|
ℹ️
|
For case management, security policies for variables implemented through VariableGuardProcessEventListener are executed before starting a case, reopening it or adding data to a case file.
|
|
🔥
|
For other custom tags, it is possible also to react after variable change in the same scenarios by implementing afterVariableChanged in the custom event listener.
|
|
💡
|
Kogito (next generation of cloud-native business automation for building intelligent applications as evolution of Drools, jBPM and OptaPlanner) supports more variable tagging out-of-the-box: internal, input, output, business-relevant and tracked.
|