Authorization for business-process applications

Ensure that you enable global security in WebSphere® Application Server.

When an instance of the LocalBusinessFlowManager or the BusinessFlowManager session bean is created, WebSphere Application Server associates a session context with the instance. The session context contains the caller's principal role. This information is used to check the caller's authorization for each call. The caller must be authorized to call methods, and view objects and the attributes of these objects.

The following reasons for a work-item assignment are used:

These assignment reasons are mapped to authorizations:

Special authorization authority is granted to people with the following roles:
Do not delete the user ID of the process starter from your user registry if the process instance still exists. If you do, the navigation of this process cannot continue. You receive the following exception in the system log file:
no unique ID for: <user ID> 

Terms of use | | Broken links

Last updated: Mon Mar 27 18:04:05 2006

(c) Copyright IBM Corporation 2005.
This information center is powered by Eclipse technology (http://www.eclipse.org)