Creating a Community of Authorized Users

The BI Beans persistence service allows the application developer to control the access of users to folders in the BI Beans Catalog. To support this access control, the persistence service requires a list of authorized users.

Catalog user community

The Catalog user community is composed of all the users whose names have been added to the list of users that is stored in the BI Beans Catalog. The default implementation involves the following pieces:

This class implements methods that throw a BISecurityException to indicate an error. The methods are as follows:

To add a new user to the list and specify privileges, you use the addEntries method. You can also merge in users to the Catalog user community from an external community. The BI Beans samples include scripts that you can execute to merge in users from an Oracle Internet Directory (or OID -- Oracle's implementation of an LDAP service). These example scripts perform the following functions:

External user communities

You can create your own mechanism for maintaining a user community. This mechanism might access external systems such as an OID, the Oracle RDBMS, or Oracle application users. You can plug in your own user community driver and access an external user community by implementing the UserCommunityProvider interface and registering it.