This has been a fun one to track down...
I have an item that has a Lifecycle State permission (Let's call the permission PermA) of:
World -> Get
Owner -> Get, Update
Admin -> Get, Update, Delete
When the user (owner) locks one of these items while in the state with those permissions, the LockedItem gets a permission id of PermA.
When the user then tries to unlock that item (without making any changes) they get an error: "Insufficient permissions to delete the item.".
LockedItems has a default permission allowing the Creator to Delete and Update, but it also has "Use Src Access" checked, giving it the permissions of the Source Item, PermA. Since PermA only mentions Owner and the LockedItem is not getting an owner populated, they don't have permissions to delete the LockedItem, thus they can't unlock it.
Am I missing some setting that prevents this from happening? Is turning off "Use Source Access" on "LockedItems" a sufficient solution?
Thanks
Jen