Configuring Access to Entity
Services
Use
You use the authorization application of the CAF Runtime Configurator to specify access authorization for a business object stored in the Object Access Layer (OAL) of Composite Application Framework Core (CAF Core). Authorization is based on creating business rules and access control lists (ACL) for each business object type.
Prerequisites
You have assigned the role of CAFAdmin to the user who will maintain authorizations in CAF.
You have launched the CAF Runtime Configurator with http://<host>:<port>/caf and selected Administrative Tools ® Authorization Assignment. Remember to replace <host> and <port> with your machine’s name.
Procedure
1. Select an object from the Secured Business Entities list.
In the Business Rules table, you can see a list of existing
rules for the business object you have chosen. You can remove any of these
rules by selecting the rule and choosing
with the quick info text Remove. You can also create new rules.
2. To create a new rule, choose New Rule and replace the default name Rule, with a more descriptive rule name.
3. Select the Conditions tab page and choose New Condition.
A value appears in the Conditions List table.
You can create as many conditions for the rule as you like.
4. In the Attribute column, select a value from the dropdown list. In the same table, specify Low Value and High Value and select an operator. Possible values are:
¡ equal
¡ less than
¡ less equal
¡ greater than
¡ greater equal
¡ between
5. Choose Access Control List.
Each rule requires you to assign users via the access control list (ACL).
6. Search for users and then choose Add Selected to ACL to add users to the access control list of the selected rule for the object.
7. For each entry, select permissions from the dropdown list or remove the entry.
Repeat steps 1-8 as necessary for each rule.
8. To complete the procedure, choose Save Business Rules.