Role Based Access to Collaboration and Rescheduling Related APIs

Fusion Field Service introduces Permission Groups for Collaboration and Rescheduling–related APIs, providing enhanced control and flexibility in managing API access. These permission groups can be assigned to job or duty roles within the Security Console and subsequently granted to users.

By complementing the existing role-based security framework, permission groups enable administrators to grant highly targeted access-ensuring that integrations and users are authorized only for the specific API operations they require. This approach strengthens security while simplifying access management.

The APIs impacted by this enhancement are listed in the table below. External applications, including Visual Builder extensions, that authenticate using OAuth 2.0 must have the relevant permission groups assigned to the appropriate user roles to successfully invoke these APIs.

The following permission groups for Collaboration Related APIs were added:

Table - New Permission Groups for Collaboration API

  Permission Group Permission Group Code Permission Group Description
1 Read Field Service Address Book REST Resource oraCxFieldService_read_AddressBook_OraResource

Returns the address book in Field Service Collaboration. Grants access to GET /api/field-service/collaboration/v1/addressBook

2 Create Field Service Chat REST Resource oraCxFieldService_create_Chat_OraResource Creates a chat in Field Service Collaboration. Grants access to POST /api/field-service/collaboration/v1/chats
3 Leave Field Service Chat REST Resource oraCxFieldService_leave_Chat_OraResource Allows leaving a chat in Field Service Collaboration. Grants access to POST /api/field-service/collaboration/v1/chats/{chatId}/leave
4 Read Field Service Chat Message REST Resource oraCxFieldService_read_ChatMessage_OraResource Returns messages from the chat in Field Service Collaboration. Grants access to GET /api/field-service/collaboration/v1/chats/{chatId}/messages
5 Create Field Service Chat Message REST Resource oraCxFieldService_create_ChatMessage_OraResource Creates a chat message in Field Service Collaboration. Grants access to POST /api/field-service/collaboration/v1/chats/{chatId}/messages
6 Read Field Service Chat Participant REST Resource oraCxFieldService_read_ChatParticipant_OraResource Returns participants of the chat in Field Service Collaboration. Grants access to GET /api/field-service/collaboration/v1/chats/{chatId}/participants
7 Create Field Service Chat Participant REST Resource oraCxFieldService_create_ChatParticipant_OraResource Allows inviting participants to the chat in Field Service Collaboration. Grants access to POST /api/field-service/collaboration/v1/chats/{chatId}/participants/invite

The following permission groups were added for Activity and Resource APIs that are used during rescheduling:

Table - Permission groups added for Activity and Resource APIs

  Permission group name Permission group code Permission group description
1 Move Field Service Activity REST Resource oraCxFieldService_move_Activity_OraResource

Moves Field Service Activity. Grants access to POST /rest/ofscCore/v1/activities/{activityId}/custom-actions/move

2 Cancel Field Service Activity REST Resource oraCxFieldService_cancel_Activity_OraResource Cancels Field Service Activity. Grants access to POST /rest/ofscCore/v1/activities/{activityId}/custom-actions/cancel
3 Read Field Service Resource REST Resource oraCxFieldService_read_Resource_OraResource Returns Field Service Resource. Grants access to GET /rest/ofscCore/v1/resources/{resourceId}

The following permission groups introduced in 25D were renamed:

Table - Renamed permission groups

  Old Permission Group Name Permission Group Code New Permission Group Name Permission Group Description
1 read:Field Service Booking Dependency oraCxFieldService_read_bookingDependency_oraResource oraCxFieldService_read_bookingDependency_oraResource Returns a list of fields and properties that required by showBookingGrid API function to determine parameters of activity that is going to be booked. Grants access to GET /rest/ofscCapacity/v1/bookingFieldsDependencies
2 read:Field Service Booking Grid oraCxFieldService_read_bookingGrid_oraResource oraCxFieldService_read_bookingGrid_oraResource Returns the booking grid for booking an activity based on the criteria in the request. Grants access to POST /rest/ofscCapacity/v1/showBookingGrid
3 read:Field Service Matching Resource oraCxFieldService_read_matchingResource_oraResource oraCxFieldService_read_matchingResource_oraResource Returns a list of resources which can complete the activity based on the criteria in the request. Grants access to POST /rest/ofscCore/v1/resources/custom-actions/findMatchingResources
4 create:Field Service Activity oraCxFieldService_create_activity_oraResource oraCxFieldService_create_activity_oraResource Creates Field Service Activity. Grants access to POST /rest/ofscCore/v1/activities
5 update:Field Service Activity oraCxFieldService_update_activity_oraResource oraCxFieldService_update_activity_oraResource Updates Field Service Activity. Grants access to PATCH /rest/ofscCore/v1/activities/{activityId}
6 read:Field Service Activity oraCxFieldService_read_activity_oraResource oraCxFieldService_read_activity_oraResource Returns Field Service Activity. Grants access to GET /rest/ofscCore/v1/activities/{activityId} and GET /rest/ofscCore/v1/activities

Permission Groups can be assigned to job or duty roles, which are then granted to users. This structure provides flexible and precise control over API access while aligning with the existing security framework.

For third-party applications integrating with these APIs and requiring user identity context, Permission Groups should be used in conjunction with an OAuth 2.0 Authorization Code configuration in Oracle Cloud Infrastructure Identity and Access Management (IAM). For more details about how to configure OAuth2.0 Authentication, see here.