Table C-1 shows the ADF components and their permission grants that you can define to create ADF security policies. You add grants to the policy store using the overview editor for ADF security policies. A permission grant specifies the fully qualified permission class name, the fully qualified resource name, the action that can be performed against the resource, and the application role target of the grant. When you enable ADF security to enforce authorization checking against the security policies of the policy store, the operations supported by ADF components will be inaccessible to users who do not possess sufficient access rights as defined by grants to their application role.
For complete details about defining ADF security policies in Fusion web applications, see Enabling ADF Security in a Fusion Web Application.
Note:
JDeveloper displays grantable actions for Fusion web applications including actions for Oracle WebCenter Portal: Framework. WebCenter Portal: Framework supports creating personalizable web pages. For details about securing WebCenter Portal: Framework applications, see Introduction to WebCenter Portal Assets in Developing WebCenter Portal Assets and Custom Components with Oracle JDeveloper.
Table C-1 ADF Security Permission Grants
ADF Component | Grantable Action | Corresponding Implementation |
---|---|---|
ADF bounded task flow |
|
The In this release, this is the only task flow action supported by Fusion web applications without Oracle WebCenter Portal: Framework. |
ADF bounded task flow |
|
Reserved for future use. This action is not checked at runtime. |
ADF bounded task flow |
|
Reserved for future use. This action is not checked at runtime. |
ADF bounded task flow |
|
Reserved for future use. This action is not checked at runtime. |
ADF page definition |
|
The In this release, this is the only page definition action supported by Fusion web applications without Oracle WebCenter Portal: Framework. |
ADF page definition |
|
The customize action controls who can make implicit changes (such as minimize/restore, delete, or move) to a WebCenter Portal customizable component (in a Panel Customizable or Show Detail Frame) contained in a page of a custom application (one enabled to use Oracle WebCenter Portal's Composer) or a WebCenter Portal: Framework application. |
ADF page definition |
|
The edit action controls who can invoke Oracle WebCenter Portal's Composer and who can make changes to the page using Oracle WebCenter Portal's Composer. Additionally, this action combines personalize and customize actions. This means that the edit action also controls who can make implicit changes to a WebCenter Portal customizable component (in a Panel Customizable or Show Detail Frame) contained in a page with the edit permission grant. |
ADF page definition |
|
The grant action confers the rights specified by all Oracle WebCenter Portal: Framework-specific actions combined; it is equivalent to granting all other actions. It also controls who can make grants to other users and who can change security settings on the page using Oracle WebCenter Portal's Composer. |
ADF page definition |
|
The personalize action controls who can make implicit changes (such as minimize/restore, delete, or move) to a WebCenter Portal customizable component (in a Panel Customizable or Show Detail Frame) contained in a page of a custom application (one enabled to use Oracle WebCenter Portal's Composer) or a WebCenter Portal: Framework application. |
ADF Business Components entity objects |
|
The |
ADF Business Components entity objects |
|
The |
ADF Business Components entity objects |
|
The |
ADF Business Components attributes of entity objects |
|
The |