Prevent service from being manually instantiated

[RonnyB71]

Description

Services based on subscription should not be allowed to instantiate manually. Subscription is this case means that the instance are created by the service owner on behalf of the reportee. The instance is the shown in the Altinn Inbox as a element that needs attention and should be filled out. In Altinn 2 there is a setting called "Kun tilgjengelig for abonnementstjeneste", but currently Altinn 3 iss missing this feature. In order to easily test forms like this it should be possible to instantiate them in a test environment.

Additional Information

As a reference for services using this in Altinn 2 see KRT-10001 and KRT-1007.

Tasks

No response

Acceptance Criterias

• A setting that disallows manual instantiation and shows an error message to the user if manual instantiation is tried.
• It should be allowed to use copy from previous instances as long as this was created as a subscription service

[tjololo]

The scenario where only the service owner is allowed to instantiate and not the end user should be possible to achieve with a authorization rule I think.
But as we cannot differentiate the auth rules based on the environment the same rules would apply in all environments leaving the "possible to instantiate them in a test environment" as a todo.
The Copy operation is tied to the instantiate permission so I think that is also something we would need to adress, but not 100% sure.

[martinothamar]

Looks like copying is done in two steps

• Create the new instance as normal
• Copy over data

So if we're going to use XACML and and the instantiate action for this I guess we have to differentiate a "copy creation" and the "normal creation"

[martinothamar]

Released in v8.3.0