Application Functional Security

Invoice Matching functional security supports a role-based, declarative model where resources are protected by roles that are assigned to users. Roles are associated to a logical grouping of duties, which in turn are associated to a set of privileges which provide different access rights. In this manner, an application role becomes the container that grants permissions to its members to access the application tasks, screens and the functionalities within.

Roles

Roles, also referred to as Job Roles, align with titles or jobs within a retailer's organization, such as an Accounts Payable Specialist or Financial Manager. Roles are used to classify users based on job responsibilities and actions to be performed in the application. One or more duties as well as individual privileges, if desired, can be assigned to roles. When a user logs into the application, based on the roles assigned to the user, the system determines which privileges have been granted to the user and the system features are enabled accordingly.

Duties

Duties are tasks one must perform in the context of their job. Duties in Invoice Matching are logical groupings of privileges or other duties that grant users access to a set of functionally related tasks within the application.

Privileges

Privileges are used to grant permission to access links into workflows, screens, actions and in some cases specific fields within the application. Privileges that grant access to related functionality are grouped together into duties that permit a user to perform a complete task to fulfill responsibilities within the context of their job.