Before You Begin

This 5-minute tutorial shows you how to create a security role which will allow a user access to the Workers REST API.

Background

Authorization identifies which users can access the REST API. User roles must have security privileges, including custom data roles for the APIs if any. To access REST APIs, user roles must have security privileges. You must also include custom data roles, if any, for the APIs.

The workers REST API is secured with various function security privileges and data security policies. These privileges and policies are delivered through predefined duty roles, which control access to person and employment objects. Depending on the roles assigned, and their level of access, users can access the workers REST API to view or manage data. For more information about workers security, see: REST API for Oracle HCM Cloud: Manage Workers Security.

For more information on role types and their functions, see: Oracle Fusion Applications Security Guide.

Create a Job Role by Modifying an Existing Job Role

1. Login as a security manager user and access the security console.

   Navigator > [Tools] Security Console

2. In the Roles tab, search for Human Capital Management Integration Specialist and copy the Role using the Copy Top Role option.

3. Give the role the following properties, replacing ## for your initials:

   Attribute	Value
   Role Name	## Human Capital Management Integration Specialist
   Role Code	##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB
   Description	## Individual responsible for planning, coordinating, and supervising all activities related to the integration of human capital management information systems.

4. Add the Use REST Service - Worker as HR duty role.
• Proceed to the Role Hierarchy page either by clicking on the train stop, or clicking next.
• Click Add Role.
• Search for Use REST Service - Worker as HR.
• Select the role and click Add Role Membership.
• Close the Add Role Membership window.
Proceed to the Summary Page either by click on the train stop, or clicking next.
5. Click Save and Close.

Create a Data Role

1. Access the Manage Data Role and Security Profiles task.

   Navigator > Setup and Maintenance > Tasks > Search > Manage Data Role and Security Profiles

2. Create a New Data Role.

3. Give the data role the following properties, replacing ## for your initials:

   Attribute	Value
   Data Role	##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB_ALL
   Job Role	## Human Capital Management Integration Specialist

4. Click Next.
5. Click Yes to acknowledge the warning.

6. Give the data role the following security criteria:

   Attribute	Value
   Organization Security Profile	View All Organizations
   Position Security Profile	View All Positions
   Country Security Profile	View All Countries
   Legislative Data Group Security Profile	View All Legislative Data Groups
   Person Security Profile	View All People
   [Public] Person Security Profile	View All People
   Document Type Security Profile	View All Document Types
   Payroll Security Profile	View All Payrolls
   Job Requisition Security Profile	View All Job Requisitions

7. Click Review.
8. Click Submit.

Assign the Data Role to your Integration User

1. Access the security console.

   Navigator > [Tools] Security Console

2. In the users view, search for your integration specialist user.
3. Click on the Display Name to access the user information.
4. Click Edit.
5. Click Add Role.
6. Search for your data role role, ##_HUMAN_CAPITAL_MANAGEMENT_INTEGRATION_SPECIALIST_JOB_ALL.
7. Select the role and click Add Role Membership.
8. Close the Add Role Membership dialog box.
9. Click Save and Close.

Next Tutorial

Setup Postman