Security (WF)
The SQL Workflow Instance Store uses the following database security roles to secure access to instance state information in the persistence database.
System.Activities.DurableInstancing.InstanceStoreUsers. This role has read and write access to public views and execution rights to stored procedures that are involved in creating, loading and saving instances.
System.Activities.DurableInstancing.InstanceStoreObservers. This role has read-only access to public views.
System.Activities.DurableInstancing.WorkflowActivationUsers. This role has execution rights to stored procedures that are involved in the instance activation process. For more information about instance activation, see Instance Activation. The user account under which a generic host (such as the Workflow Management Service of the hosting features of Windows Server AppFabric) runs should be added to this database role.
For more information about security for persistence stores with Windows Server App Fabric, see Security Configuration for Persistence Stores in App Fabric
Caution
A client that has access to its own instance data in the instance store has access to all other instances in the same instance store. The instance store does not support specifying security permissions at the instance level. You should create separate instance stores and map different groups/users to have access to different stores.
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for