Role Based Access to Collaboration and Rescheduling Related APIs
Fusion Field Service introduces Permission Groups for Collaboration and Rescheduling–related APIs, providing enhanced control and flexibility in managing API access. These permission groups can be assigned to job or duty roles within the Security Console and subsequently granted to users.
By complementing the existing role-based security framework, permission groups enable administrators to grant highly targeted access-ensuring that integrations and users are authorized only for the specific API operations they require. This approach strengthens security while simplifying access management.
The APIs impacted by this enhancement are listed in the table below. External applications, including Visual Builder extensions, that authenticate using OAuth 2.0 must have the relevant permission groups assigned to the appropriate user roles to successfully invoke these APIs.
The following permission groups for Collaboration Related APIs were added:
Table - New Permission Groups for Collaboration API
| Permission Group | Permission Group Code | Permission Group Description | |
|---|---|---|---|
| 1 | Read Field Service Address Book REST Resource | oraCxFieldService_read_AddressBook_OraResource |
Returns the address book in Field Service Collaboration. Grants
access to |
| 2 | Create Field Service Chat REST Resource | oraCxFieldService_create_Chat_OraResource | Creates a chat in Field Service Collaboration. Grants access to
POST /api/field-service/collaboration/v1/chats
|
| 3 | Leave Field Service Chat REST Resource | oraCxFieldService_leave_Chat_OraResource | Allows leaving a chat in Field Service Collaboration. Grants access
to POST
/api/field-service/collaboration/v1/chats/{chatId}/leave |
| 4 | Read Field Service Chat Message REST Resource | oraCxFieldService_read_ChatMessage_OraResource | Returns messages from the chat in Field Service Collaboration. Grants
access to GET
/api/field-service/collaboration/v1/chats/{chatId}/messages |
| 5 | Create Field Service Chat Message REST Resource | oraCxFieldService_create_ChatMessage_OraResource | Creates a chat message in Field Service Collaboration. Grants access
to POST
/api/field-service/collaboration/v1/chats/{chatId}/messages |
| 6 | Read Field Service Chat Participant REST Resource | oraCxFieldService_read_ChatParticipant_OraResource | Returns participants of the chat in Field Service Collaboration.
Grants access to GET
/api/field-service/collaboration/v1/chats/{chatId}/participants |
| 7 | Create Field Service Chat Participant REST Resource | oraCxFieldService_create_ChatParticipant_OraResource | Allows inviting participants to the chat in Field Service
Collaboration. Grants access to
POST
/api/field-service/collaboration/v1/chats/{chatId}/participants/invite |
The following permission groups were added for Activity and Resource APIs that are used during rescheduling:
Table - Permission groups added for Activity and Resource APIs
| Permission group name | Permission group code | Permission group description | |
|---|---|---|---|
| 1 | Move Field Service Activity REST Resource | oraCxFieldService_move_Activity_OraResource |
Moves Field Service Activity. Grants access to |
| 2 | Cancel Field Service Activity REST Resource | oraCxFieldService_cancel_Activity_OraResource | Cancels Field Service Activity. Grants access to POST
/rest/ofscCore/v1/activities/{activityId}/custom-actions/cancel
|
| 3 | Read Field Service Resource REST Resource | oraCxFieldService_read_Resource_OraResource | Returns Field Service Resource. Grants access to
GET
/rest/ofscCore/v1/resources/{resourceId} |
The following permission groups introduced in 25D were renamed:
Table - Renamed permission groups
| Old Permission Group Name | Permission Group Code | New Permission Group Name | Permission Group Description | |
|---|---|---|---|---|
| 1 | read:Field Service Booking Dependency | oraCxFieldService_read_bookingDependency_oraResource | oraCxFieldService_read_bookingDependency_oraResource | Returns a list of fields and properties that required by
showBookingGrid API function to determine parameters of activity that is
going to be booked. Grants access to
GET
/rest/ofscCapacity/v1/bookingFieldsDependencies |
| 2 | read:Field Service Booking Grid | oraCxFieldService_read_bookingGrid_oraResource | oraCxFieldService_read_bookingGrid_oraResource | Returns the booking grid for booking an activity based on the
criteria in the request. Grants access to
POST
/rest/ofscCapacity/v1/showBookingGrid
|
| 3 | read:Field Service Matching Resource | oraCxFieldService_read_matchingResource_oraResource | oraCxFieldService_read_matchingResource_oraResource | Returns a list of resources which can complete the activity based on
the criteria in the request. Grants access to
POST
/rest/ofscCore/v1/resources/custom-actions/findMatchingResources |
| 4 | create:Field Service Activity | oraCxFieldService_create_activity_oraResource | oraCxFieldService_create_activity_oraResource | Creates Field Service Activity. Grants access to POST
/rest/ofscCore/v1/activities |
| 5 | update:Field Service Activity | oraCxFieldService_update_activity_oraResource | oraCxFieldService_update_activity_oraResource | Updates Field Service Activity. Grants access to
PATCH
/rest/ofscCore/v1/activities/{activityId} |
| 6 | read:Field Service Activity | oraCxFieldService_read_activity_oraResource | oraCxFieldService_read_activity_oraResource | Returns Field Service Activity. Grants access to
GET
/rest/ofscCore/v1/activities/{activityId} and
GET
/rest/ofscCore/v1/activities |
Permission Groups can be assigned to job or duty roles, which are then granted to users. This structure provides flexible and precise control over API access while aligning with the existing security framework.
For third-party applications integrating with these APIs and requiring user identity context, Permission Groups should be used in conjunction with an OAuth 2.0 Authorization Code configuration in Oracle Cloud Infrastructure Identity and Access Management (IAM). For more details about how to configure OAuth2.0 Authentication, see here.