-create 2 users: 1 evaluator and 1 participant
-Create 2 eport sites w/the eval tool and wizards.
-Create a wizard in the first site. For the wizard, select the evaluator role (not id) as an evaluator
-Create wizard page (this isn't important, just allows the wizard to work)
-As participant, submit wizard for evaluation (important: submit entire wizard, not wizard page)
-As evaluator: go to the other eport site and go to the eval tool. Then select view all evals from all sites
This only happens in non-myWorksite pages when trying to view wizards from a different site. What is happening is the permission to view that wizard is denied because it only looks for permission for the current site and the role in that site. Not for the site the wizard is in.
After inspecting what is causing this, I found a few areas that could fix it:
WorksiteAwareAuthorizationFacade.java at getAgentRoles(Agent agent)
This function only returns all roles for every site if the user is in MyWorkspace. The issue is the user is in a portfolio site, but that site isn't the portfolio site the wizard is contained in.
WizardManagerImpl.java at getEvaluatableWizards(Agent agent, List<Agent> roles, List<String> worksiteIds, HashMap siteHash)
at Wizard wizard = getWizard( evalItem.getId() );
If you call getWizard( evalItem.getId(), WIZARD_NO_CHECK), then the permission check gets bypassed and the tool works.