In ADF security, as in Java EE security, users are assigned one or more roles, and permissions are granted to roles.
After you enable ADF Security you must grant users access rights so that they may view the web pages of the Fusion web application. Access rights that you grant users are known as a security policy that you specify for the page's corresponding ADF security-aware resource. Ultimately, it is the security policy on the ADF resource that controls the user's ability to enter a task flow or view a web page.
To begin defining users and roles, you will use the Application Roles page of the overview editor for jazn-data.xml. To open the editor, from the Application menu, choose Secure Application Roles .
You create application roles to represent the policy requirements of the application and to define groups of users with the same view permission rights. The application roles that you create in the application policy store are specific to your application. For example, in the context of the work flow, there may be application roles such as customer, staff, and supplier.
At runtime, the access rights are conferred on the user through the application role for which the user is defined as a member. Thus, before you can define security policies, the policy store must contain the application roles that you intend to issue grants to.
Copyright © 1997, 2009, Oracle. All rights reserved.