Skip to main content

In IFS Applications 10, Oracle Low Level security enhance the data segregation to the row level, and it is a good way to enhance it, when the customer requires a very detailed data segregation.

I’d like to know if it is still valid in IFS Cloud, or in IFS Cloud it is a different strategy available

Hi,

 

In IFS applications security is enforced through permission sets. For IFS Cloud, the client that is going to be available is Aurena. For Aurena, permissions are granted through projections. Please go through this to see if it answers your questions regarding Oracle Row Level security with IFS Cloud.

 

Thanks,

Kasun 


@Gonzalo Valle
In IFS Cloud, Row level security (RLS) can be achieved in different ways.

Some of them are:

  • Using predefined security filters (e.g. DbRowLevelSecurity "company-basic")
  • Using @SecurityCheck annotation
  • Using custom conditions (in where clause)

Please refer to below location in documentation for more info: to https://docs.ifs.com/techdocs/21r1/foundation1/050_development/027_base_server_dev/050_security/030_row_level/default.htm
 

Apart from above, in IFS Aurena, you can define filters at projection level as well for data protection. For instance, for an entity set, override the entity in projection definition to add a filter condition. However, the best way is to define RLS at DB entity/view level (not at the projection level) so that RLS is guaranteed for any consumers who does not directly consumes projections for data retrieval, such as IALs, Lobbies.