Determine required authorizations for API method
We have such problem, that some method works perfectly for one users and doesn't work for another. We cannot sort the problem out.
Our EJB function throw an exception "Caused by: com.sap.bpm.exception.api.BPMIllegalAccessException: com.sap.glx.process.exception.ProcessAuthorizationException: User 'XXX' has no permission for calling this method with id 'YYY"
This function cancels specified process by URI.
The questions are: what authorization does it require and what is the approach to resolving such issues?
How to determine necessary authorization for the specific API method? In our case it is ProcessInstanceManager.cancel(URI processInstanceId)