docs: Difference in permission behavior between Tasklist V1 and V2 APIs for CREATE_PROCESS_INSTANCE on PROCESS_DEFINITION

**Description:**
When the `CREATE_PROCESS_INSTANCE` permission is granted on the `PROCESS_DEFINITION` resource type, Tasklist V1 and V2 APIs show different behaviors:

* **Tasklist V1 API:**
  The user **can see** the process on Tasklist when `CREATE_PROCESS_INSTANCE` is granted.
  This is because the V1 API request uses:


* **Tasklist V2 API:**
  The user **cannot see** the process on Tasklist with only `CREATE_PROCESS_INSTANCE` permission.
  V2 instead searches for processes using `READ_PROCESS_DEFINITION` permission.

This difference leads to inconsistent user experiences depending on which Tasklist API version is used.

https://github.com/user-attachments/assets/9acd4415-3875-47b1-9c7b-f60bb236e281

https://github.com/user-attachments/assets/d2b060b2-0b48-4b95-9263-763efe872bf6


**Expected behavior:**
The permission requirements and resulting visibility of processes on Tasklist should be clearly documented for both V1 and V2 APIs.

**Proposed documentation updates:**

* Add clarification to the [Tasklist API Versions page](https://docs.camunda.io/docs/next/components/tasklist/api-versions/)](https://docs.camunda.io/docs/next/components/tasklist/api-versions/).


**References:**
slack [thread](https://camunda.slack.com/archives/C08MRKHJ0CD/p1758526362186769)

related to:
#6477 


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

docs: Difference in permission behavior between Tasklist V1 and V2 APIs for CREATE_PROCESS_INSTANCE on PROCESS_DEFINITION #6964

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

docs: Difference in permission behavior between Tasklist V1 and V2 APIs for CREATE_PROCESS_INSTANCE on PROCESS_DEFINITION #6964

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions