An application service is associated with each zone. A user
must be granted access rights to the respective application service
in order to see a zone on a portal.
Please note the following with respect to zone application security:
- For most base product portals, all the zones for all the portals
reference the same application service that is used to grant access
to the main (stand-alone) portal for the page. In other words, if
the user has access to the page, then he has access to all the zones
on all portals for the page. There may be exceptions to this rule
for certain portals.
- For a base product multi-query zones, typically the individual
query zones and the multi-query zone reference the same application
service that is used to grant access to the main (stand-alone) portal
for the page. However, there may be individual query zones provided
with a unique application service. This may occur when the query option
is unusual and not applicable to all users or even to all implementations.
If a user does not have security access to an individual query zone,
that option will not be available in the dropdown.
- For base product portals that are configured to show on portal
preferences, it is common that the portal contains different types
of zones that may be applicable to different types of users. Typically
these types of portals will deliver a unique application service for
each zone so that an implementation may configure which user groups
are allowed to view each zone. For these types of portals, please
note the following:
- A user's Portal Preferences page contains a row for a zone regardless
of whether the user has access rights to the zone. Because of this,
the system displays an indication of the user's access rights to each
zone.
- If a user's access rights to a zone are revoked, the zone will
be suppressed when the user navigates to the respective portal.
- Revoking a user's access rights does not change the user's portal
preferences (i.e., a user can indicate they want to see a zone
even if they don't have access to the zone - such a zone just won't
appear when the respective portal appears).
Note:
If you don't need to use zone security. When defining
a zone, an application service is required. For zones that don’t require
special security, the product provides a “default” application service
(F1-DFLTS) that may be used. The expectation is that all user groups
are granted access to this application service.
Copyright © 2007, 2016, Oracle and/or its affiliates. All rights reserved. Documentation build: 2.5.2016 10:21:45 [T1_1454696505000]