Creating the security model

You create a security model so that users can have different levels of privileges to objects in the Product Master Server solution.

About this task

You control security for your Product Master Server system by providing different access privileges to users based on the roles of the users.

You can define roles based on the tasks that are performed by any user or set of users of the Product Master Server system. For example, you can define roles to control a user's privileges to catalog management. You can set the privileges to the role and not to the user.

For example, you can define an Admin role for an administrator.

Each role can be assigned to multiple users. For example, the basic role can be assigned to user 1, user 2, and user 3.

Important: For a working security model, set the value of the javaapi_security flag in the common.properties file to true. The javaapi_security flag disables the secure mode for any Java™ API invocation. By default, the value of the javaapi_security flag is true. You can disable the security by setting the value of the javaapi_security flag to false.

Procedure

Create roles such as Admin and Basic.
Create a user for each person who uses the Product Master Server system.
Create access control groups (ACGs) to group objects in ACGs so that you can provide access privileges for the objects to the users who belong to that ACG.
Map objects to an ACG to group the objects in ACGs so that the objects inherit the access privileges of the ACG. Provide access privileges for the objects by providing the user with the access to the ACG.
Grant group access privileges to roles such as the create and delete privileges for the Admin role.
Grant system privileges to the roles such as the manager role so that the managers have privilege to modify other roles in the Product Master Server system.
Grant privileges to the user interface screens by role.
For example, grant the Admin role privileges to all of the administration screens.