|
|
More about Access of Role to Object rulesDevelopment
To create new Access of Role to Object rules:- First create access role names using Access Role form. Start each access role name with an initial portion (such as a RuleSet name) that is unique to your application.
- Incorporate the new access roles into Access of Role to Object instances.
You specify the access settings by entering either a production level at or below which the access is valid, or an Access When rule (Rule-Access-When rule type) that defines the requirements for access.
The production level of your system is a property in the System data instance. It has a value between 1 (least restrictive) and 5 (most restrictive).
You can create Access of Role to Object rules and related rules indirectly, using the Access Role editor, as an alternative to creating them through the rule form.
When changes take effect
After you save an Access of Role to Object form, active requestor sessions on the current node that are associated with that rule are immediately updated. Requestors at other nodes in a cluster are updated when the next system pulse occurs on their node.
In Version 4, changes to an Access of Role to Object rule affected only those requestors who logged in after the change. Active requestors were not affected.
Security audits
Using the optional security audit feature, your application can present in the History Details display which values were added, updated, or removed from this rule when it was saved. See How to enable security auditing for rule or data changes.
 | access role, privilege, production level |
 | About Access Role Name rules About Access When rules About the Access Role editor |
 | Atlas — Standard Access of Role to Object rules |
About Access of Role to Object rules