Review Privileges and Policies
Function Security Privileges
The workers
REST API is secured with three function privileges
that control access to the API. This graphic shows the data security
policies for the workers
API.
![Function Security Privileges for Workers API. Function Security Privileges for Workers API.](images/Workers_FSP.png)
Data Security Policies
The workers
REST API is secured with a number of data security
policies that define permitted actions on the person and employment
data. Each workers
resource
is secured with two types of data security policies:
- View: Allows read-only access (GET) to a business object.
- Manage: Allows create, update, and delete (POST, PATCH, and DELETE) access to a business object.
For example, to view the Person Citizenship business object, you need the View Person Citizenship data security policy. However to update this business object, you must have the Manage Person Citizenship data security policy.
Additional privileges such as Terminate
Work Relationship, Change Work Relationship Hire Date, and so on,
secure special actions such as terminating a worker or changing the
start date of a work relationship. This graphic shows the data security
policies for the workers
resource and its child resources.
![Data Security Policies for Workers API. Data Security Policies for Workers API.](images/Workers_DSP.png)
LOV Roles and Privileges
The workers
API leverages HCM LOVs that include HCM common lookups,
HCM Countries, Workers, Person Reference Data, Collective Agreements,
and Work Structures LOVs on the person and employment attributes.
For more information, see the individual LOV resources.