FileNet P8 Platform, Version 5.2.1            

Custom object security levels

Explanation of custom object security levels.

The table below maps custom object security levels to the rights from which they are comprised. For example, the View Properties security level includes the rights View all properties and Read permissions.

In the Administration Console for Content Platform Engine administration console, you can view and edit these permissions on the Security or the Default Instance Security tab of the custom object class.

Each right in the table is expressed as a user interface (UI) description of the right and as an access right setting that corresponds to the UI description. For example, the right to view all properties could appear as View all properties in an application UI, but the actual setting for viewing all rights is the AccessRight.READ value.

Table that maps custom object security levels, which are marked with a check symbol, to the access rights.
Rights Full Control Modify  properties Link View properties <Default>

View all properties

AccessRight.READ

check check check check

Modify all properties

AccessRight.WRITE

check check    

Reserved12 (Deprecated permission)

AccessRight. RESERVED12

check      

Reserved13 (Deprecated permission)

AccessRight.RESERVED13

check      

Link / Annotate

AccessRight.LINK

check check check  

Delete

AccessRight.DELETE

check      

Read permissions

AccessRight.READ_ACL

check check check check

Modify permissions

AccessRight.WRITE_ACL

check      

Modify Owner

AccessRight.WRITE_OWNER

check      

Minor versioning  (Inherit only)

AccessRight.MINOR_VERSION

       

Major versioning (Inherit only)  (Also used by publishing)

AccessRight.MAJOR_VERSION

       

View content (Inherit only) (Also used by publishing)

AccessRight.VIEW_CONTENT

       

Change state (Inherit only)  (Also used by publishing)

AccessRight.CHANGE_STATE

       

Publish (Inherit only) (Also used by publishing)

AccessRight.PUBLISH

       

Create subfolder (Inherit only)

AccessRight.CREATE_CHILD

       

Unfile folder from folder (Inherit only)

AccessRight.UNLINK

       

Application Integration users do not see custom objects. Workplace users see custom objects if enabled by a site preference, but a custom object's Link access right is hidden in Workplace.



Last updated: October 2015
p8psa042.htm

© Copyright IBM Corporation 2015.