Object Security Concept in OFSAAI
Object Security framework is based on a waterfall model for determining user’s rights to perform an action on an object in the system. That is, if you do not haves the top level of object access type, there is no need to check the second level, whereas if you have the top level, then the next level down is checked. The security levels are as follows:
- User Group Authorization
- User Group Scope
- User Group Access Right
- Object Access Type