Security
Security access to the ODS Utility will be managed by the Rules Palette. Access to the ODS Schema created by the Utility will be administered as a new DB instance outside of OIPA.
Authentication
ODS uses OIPA services for user authentication & authorizations. The ODS user shall have valid user credentials and privileges to access ODS Web Service. Once user gets authenticated, OIPA sends a session token to ODS. On subsequent calls, this token is used for authorizing the user.
Authorizations
In ODS, the access restriction implementation is based on the role-based access control (RBAC) model. User shall have special privileges to gain access to ODS resources. For eg., ODS user shall be registered to 'ODSService' for a web method 'ODSLogin' to make a login request.
Session Management
When a user successfully login to ODS application, a session is established and maintained in OIPA. ODS supports a configuration to set the session time out interval. By default, it will be set to 30 min. The session will be automatically timed out if user is found to be inactive for more than session timeout interval.