Oracle by Example brandingGet Started with Workers REST API - Authorization

section 0Before You Begin

This 5-minute tutorial shows you how to create a security role which will allow a user access to the Workers REST API.

Background

Authorization identifies which users can access the REST API. User roles must have security privileges, including custom data roles for the APIs if any. To access REST APIs, user roles must have security privileges. You must also include custom data roles, if any, for the APIs.

The workers REST API is secured with various function security privileges and data security policies. These privileges and policies are delivered through predefined duty roles, which control access to person and employment objects. Depending on the roles assigned, and their level of access, users can access the workers REST API to view or manage data. For more information about workers security, see: REST API for Oracle HCM Cloud: Manage Workers Security.

For more information on role types and their functions, see: Oracle Fusion Applications Security Guide.


section 1Create a Job Role by Modifying an Existing Job Role

  1. Login as a security manager user and access the security console.

    Navigator > [Tools] Security Console

  2. In the Roles tab, search for Human Capital Management Integration Specialist and copy the Role using the Copy Top Role option.
  3. Give the role the following properties, replacing ## for your initials:

    Attribute Value
    Role Name ## Human Capital Management Integration Specialist
    Role Code ##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB
    Description ## Individual responsible for planning, coordinating, and supervising all activities related to the integration of human capital management information systems.
  4. Add the Use REST Service - Worker as HR duty role.
    • Proceed to the Role Hierarchy page either by clicking on the train stop, or clicking next.
    • Click Add Role.
    • Search for Use REST Service - Worker as HR.
    • Select the role and click Add Role Membership.
    • Close the Add Role Membership window.
    Proceed to the Summary Page either by click on the train stop, or clicking next.
  5. Click Save and Close.

section 2Create a Data Role

  1. Access the Manage Data Role and Security Profiles task.

    Navigator > Setup and Maintenance > Tasks > Search > Manage Data Role and Security Profiles

  2. Create a New Data Role.
  3. Give the data role the following properties, replacing ## for your initials:

    Attribute Value
    Data Role ##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB_ALL
    Job Role ## Human Capital Management Integration Specialist
  4. Click Next.
  5. Click Yes to acknowledge the warning.
  6. Give the data role the following security criteria:

    Attribute Value
    Organization Security Profile View All Organizations
    Position Security Profile View All Positions
    Country Security Profile View All Countries
    Legislative Data Group Security Profile View All Legislative Data Groups
    Person Security Profile View All People
    [Public] Person Security Profile View All People
    Document Type Security Profile View All Document Types
    Payroll Security Profile View All Payrolls
    Job Requisition Security Profile View All Job Requisitions
  7. Click Review.
  8. Click Submit.

section 3Assign the Data Role to your Integration User

  1. Access the security console.

    Navigator > [Tools] Security Console

  2. In the users view, search for your integration specialist user.
  3. Click on the Display Name to access the user information.
  4. Click Edit.
  5. Click Add Role.
  6. Search for your data role role, ##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB_ALL.
  7. Select the role and click Add Role Membership.
  8. Close the Add Role Membership dialog box.
  9. Click Save and Close.

next stepNext Tutorial

Setup Postman