Service Automation

Currently, when using a form that loads on-prem Active Directory data with a large number of records (experienced at around 6,500 and around 9,000–10,000), the dual list component becomes extremely slow and unresponsive. In many cases, the browser freezes or crashes completely. This makes the form very frustrating to use and nearly unusable in practice. The issue seems specific to the dual list element. The same datasource works fine when displayed in a grid, so the problem appears to be related to how the dual list handles large datasets rather than the PowerShell data source itself. Suggested Improvement: Optimize the dual list component to handle large datasets more efficiently. Consider adding pagination, lazy loading, or search-based loading to limit the data processed at once. Alternatively, provide guidance or a built-in control better suited for large collections. Benefit Makes forms usable again for larger datasets Prevents browser freezes and crashes. Improves overall form performance and user experience in Service Automation.

Currently, when a Delegated Form or Product is deleted in HelloID Service Automation, the linked datasources and dynamic forms remain. We would like to see an option to delete these linked elements as well, as it is often not desired to keep them. Typically, each product or delegated form uses its own datasource(s) and dynamic form, so the option to immediately clean up would be beneficial. Scenario: A Delegated Form or Product is deleted, but the linked datasources and dynamic forms remain in the system. Over time, this leads to dozens of unused dynamic forms and datasources cluttering the HelloID tenant. Manual removal of these unused elements is time-consuming and inefficient. Proposal: Option to Delete Linked Elements: Provide an option/choice to delete linked datasources and dynamic forms when deleting a Delegated Form or Product. Benefits: Improved Usability: Users can easily remove outdated or unnecessary datasources and forms, leading to a cleaner and more organized interface. Enhanced Efficiency: Reducing clutter helps users find and manage relevant datasources and forms more quickly. Better Resource Management: Helps in maintaining an optimal and efficient system by removing redundant elements.

Currently, all available user-defined and system automation variables are accessible in script actions by default. This approach is convenient for reusing values across multiple scripts without embedding them as plain text. However, there are scenarios where limiting access to specific variables is necessary. To enhance control and security, I propose a change to the default behavior of automation variable availability in script actions. By default, no system or user-defined automation variables should be automatically available in script actions. Users should have the option to explicitly opt-in to the necessary system or user-defined automation variables on a per-script basis.

I would like to have the option to have another group or groups besides the resource owner that can make requests on behalf of a user. Depending on the selected approval workflow, the product is assigned immediately or goes to the approver for approval. This allows users to request products without being a resource owner. I would like to apply the same to managed users, so that they can request one or more products for the user without having to be the manager.

Provide CRUD actions for workflow approvals via API. It would be beneficial to have the following actions available in the api Get Workflow (w/ Approvers) Create Workflow Update Workflow Delete Workflow

Actually it is possible to build a direct link for a managed user for all products which can be requested for him. Example: https://tenant.helloid.com/app/selfservice/managedusers/10a123a1-c8e5-1234-8f2d-c66ba773dc28/Lene-Jung/products When a product is requested on this view, the url stays still the same. When the url has also the product id for example, then it would be possible to send the url to manager by mail, so that the product can be requested directly.

With the current self service products it is only possible to assign one (or a set of) AD groups. So, if there are different roles within an application, there has to be a seperate product for each role. Many of our applications have different roles. We would like to have one form where you can choose the required role, and subsequently the correct AD group gets granted bases on this role.

Currently, end users can see all available Self Service Products, even those they do not have access to. When attempting to request such a product, they receive a message like "You are not allowed to request this product." This leads to unnecessary clutter and confusion in the product overview. We would like to limit the visibility of products so that end users only see the groups/products they are actually allowed to request. This would significantly reduce the number of visible products and improve clarity. At the moment, the only workaround is to use categories to segment visibility, but this requires creating a separate category for each product, which is not scalable or maintainable. Suggested Improvement: Add a configuration option to hide products from users who do not have access. Make product visibility dynamically dependent on group membership or access rights. Benefit: Improves user experience by reducing confusion. Keeps the product overview clean and manageable. Reduces administrative overhead by eliminating the need for excessive category creation.

Currently, the request timeline UI cards do not visually indicate certain actions, making it harder to quickly understand the status and selections for action executions. There are multiple ways to handle requesting, approving, and recertifying product requests. By making this information visible on the timeline cards, it becomes easier to get a complete overview of the status and and selections for action executions at a glance. Add card icons for the following actions: Time limit set or updated Execute configured approval action Execute configured return action Forced approval (e.g., via Self Service Administration) Other notes for this feature request Display icon on the timeline card corresponding to each action. Show disabled state if the action is not applicable. Show active state if the action is applicable. Add a tooltip on hover with descriptive text explaining the icon.

Currently, it is not possible to execute the configured optional product return action(s) when denying a recertification request (Admin > Recertification > Administration). This provides administrators more flexibility and control when handling recertification denials Update the modal text Add a radio selection to specify whether the product return action(s) should be executed Ensure the Elastic audit message includes this new information