Security

Security access to the ODS Utility will be managed by the Rules Palette. Access to the ODS Schema created by the Utility will be administered as a new DB instance outside of OIPA.

Authentication

ODS uses OIPA services for user authentication & authorizations. The ODS user shall have valid user credentials and privileges to access ODS Web Service. Once user gets authenticated, OIPA sends a session token to ODS. On subsequent calls, this token is used for authorizing the user.

Authorizations

In ODS, the access restriction implementation is based on the role-based access control (RBAC) model. User shall have special privileges to gain access to ODS resources. For eg., ODS user shall be registered to 'ODSService' for a web method 'ODSLogin' to make a login request.

ODS Authentication Model

Session Management

When a user successfully login to ODS application, a session is established and maintained in OIPA. ODS supports a configuration to set the session time out interval. By default, it will be set to 30 min. The session will be automatically timed out if user is found to be inactive for more than session timeout interval.

 

 

 

 

 

 

 

 

Oracle Insurance Logo Copyright © 2017, Oracle and/or its affiliates. All rights reserved. About Oracle Insurance | Contact Us