Skip to main content
Verify the version tags to ensure you are consuming the intended content or, complete the latest version.

Attachment categories

Cases may require that users upload documents needed to process and resolve the Case. For example, an auto insurance claim may require the submission of an accident report and a repair estimate before a claim can be approved. To organize attachments, developers can create attachment categories to differentiate different attachments added to a Case.

Attachment categories incorporate a security component. This component allows a developer to manage access to attachments at the category level; for example, allowing one group of users to access an accident report, and a different set of users to access a repair estimate.

Note: Managing attachment categories is only one aspect of securing an application. For a complete list of security leading practices, consult the Security Checklist concept for Pega Platform deployment.

For each attachment category, you can identify the types of allowed content, such as a file, or URL. The available file types are described in the following table:

Attachment type Description
File A document file, for example, a Microsoft Office file
Note A note field for you to enter text
Screenshot An image file, for example, a JPG or PNG file
URL A URL link to a web page
Correspondence A Correspondence Rule

Attachment category access control

Attachment categories allow developers to manage access to the attached content. You apply a privilege and/or When Rule to an attachment category to allow or deny attachment Actions to users.

Use a privilege or When Condition to control access to an attachment category. When you add the privilege, select the Actions to allow if the user has the privilege. For each When Condition, select the Actions to allow if the Condition is true.

Tip: You can use the standard When Rule Never to create an always-false Condition to deny an Action to users. Similarly, you can use the standard When Rule Always to create an always-true Condition to allow an Action.

A user can perform an Action only when all the When Conditions return a true value, the user belongs to the required team, and the user holds at least one of the required privileges.

In the following image, click the + icons to learn more about an example configuration for an attachment category rule:

Attachment-level access control

You can secure individual files within an attachment category to restrict access to the attachment itself.

Configure attachment-level access control to allow users to determine who can access a specific attachment within the category. When users add an attachment to the category, they identify one or more Work Groups to which access to the attachment is allowed.

To enable attachment-level access control, select the Enable attachment-level security check box on the Security tab of the Attachment category record.

Check your knowledge with the following interaction:


This Topic is available in the following Module:

If you are having problems with your training, please review the Pega Academy Support FAQs.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega Academy has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice