Users who need to access and modify Services Registry have to be assigned to one or more of the User Management Engine roles described below.
For more information about assigning roles to user accounts, see User Management of the Application Server Java .
User roles
For a user who wants to use the search functions of Services Registry, all of the following roles are needed:
SERVICES_REGISTRY_READ_ONLY
UDDI_Tier1
Administration roles
For basic Services Registry administration, the following combination of roles is needed:
SERVICES_REGISTRY_READ_WRITE
One of the UDDI_TierN or UDDI_Admin roles.
In addition to these roles, the scope of the activities of an administrator can be enhanced by adding one of the following roles:
SERVICES_REGISTRY_BUSINESS_ADMINISTRATOR
Can change only business process related classification systems, for example, preloaded classifications.
SERVICES_REGISTRY_TECHNICAL_ADMINISTRATOR
Can manage all classification systems, including technical and preloaded ones. Can also delete and change technical classifications coming from the back-end system, such as “event” and “connectivity type” .
The last two roles allow the definition of a dedicated “business administrator” and “technical administrator” user account.
The tables below provide details about what users can see and do in Services Registry depending on the roles assigned to their user account. The tables include the J2EE_Admin role for reference only.
Role-based access to the user interface
Role |
Service Definitions |
Service Groups |
Classifications |
Systems |
Usage Profiles |
---|---|---|---|---|---|
SERVICES_REGISTRY_READ_ONLY |
Read only |
Read only |
Not visible |
Read only, cannot save changes to systems |
Not visible |
SERVICES_REGISTRY_READ_WRITE |
Read and write |
Read and write |
Read all classifications, write only classifications that are not technical and are not predefined |
Read and write |
Not visible |
SERVICES_REGISTRY_BUSINESS_ADMINISTRATOR |
Read and write |
Rread and write |
Read all classifications, write only classifications that are not technical |
Read and write |
Read only |
SERVICES_REGISTRY_TECHNICAL_ADMINISTRATOR |
Read and write |
Read and write |
Read and write |
Read and write |
Not visible |
J2EE_Admin |
Read and write |
Read and write |
Read and write |
Read and write |
Read and write |
Activities per role
Role |
Edit service definitions, service endpoints, service groups |
Browse |
Publish |
Classify view |
---|---|---|---|---|
SERVICES_REGISTRY_READ_ONLY |
Read only |
Read only |
Not visible |
Not visible |
SERVICES_REGISTRY_READ_WRITE |
Read all classifications, write only classifications that are not technical and are not predefined |
Read and write |
Read and write |
Sees it, and is able to add only classifications that are not technical and are not predefined |
SERVICES_REGISTRY_BUSINESS_ADMINISTRATOR |
Read all classifications, write only classifications that are not technical |
Read and write |
Read and write |
Sees it, and is able to add only classifications that are not technical |
SERVICES_REGISTRY_TECHNICAL_ADMINISTRATOR |
Read and write |
Read and write |
Read and write |
Sees it, and is able to add and delete all classifications |
J2EE_Admin |
Read and write |
Read and write |
Read and write |
Sees it, and is able to add and delete all classifications |