Security Model Overview

The Oracle Transportation Management service provides security on components through the configuration of Domains, Users, User Authentication, Authorization/Access Control, and Auditing functionality. The service supports several authentication mechanism such as OAuth2, Federated Single Sign-On Support, Single Sign-On (SSO), and HTTP basic authentication, and depending on the type of service request and type of user. Authorization/Access Control can be configured on individual components and end points based on required access. Further data visibility or record access control can be provided by configuring Oracle Virtual Private Database (VPD) capabilities through the Oracle Transportation Management service. A custom service audit capability is also available for auditing particular activity from within the service.

Note:

Oracle is beginning to phase out the use of HTTP Basic Authentication and has already deprecated it where an alternative authentication mechanism is available.