FileNet P8 Platform, Version 5.2.1            

Class access rights

Classes receive default security initially from their parent class.

Administration Console for Content Platform Engine displays all available classes in its Class node and Other Classes node. The administrator can define any number of new subclasses of most of these classes and can edit the access rights of any class.

Class security tabs

When you use Administration Console for Content Platform Engine to display the properties of a document class, you see three security-related tabs:

  • The Security Policy tab displays the name of the document class' default security policy, if there is one; lets you change the default security policy; and lets you run the security policy wizard to create a new policy.
  • The Default Instance Security tab displays the access rights that will be applied to each new document (the first version) based on the class. The #CREATOR-OWNER (the user who creates the object using this class) is granted Full Control by default.
  • The Security tab displays the access rights of the document class itself. By default users are granted Create instance so they can create new instances of the class (in this case new documents), but are not granted Create subclass, since subclassing is by default reserved to system administrators.
Classes receive default security from their parent class

Content Platform Engine provides the Document Class which you can modify and use as the start of your own hierarchy of document classes. For example, you could create this hierarchy of document classes:

Document Class (predefined, can be modified)
  Tax Bills (subclass of Document Class) 
    Property Tax Bills (subclass of Tax Bills)
    Estate Tax Bills (subclass of Tax Bills)

Each document class receives its default security from its document class parent. Subsequent updates to a parent class propagate to the child classes.

New objects acquire initial security from a class

The Default Instance Security collection of permissions on a document class provides the initial security for a new document based on that class. Similarly with folders and every other class that allows you to create instances of it. This initial security is not treated as Inherited and is therefore editable. Modifying a class does not affect the security of existing objects based on that class.



Last updated: March 2016
p8psa002.htm

© Copyright IBM Corporation 2016.