Security Overview

Oracle Insurance Rules Workbench controls security for both the Oracle Insurance Rules Workbench and the Oracle Insurance Policy Administration system. Security configuration is managed through the Security section in the Navigation Explorer panel.

Security Folder Structure

Expanding the Security folder displays two primary nodes:

  • Palette Security

  • Application Security

    • Palette Security and Application Security Folders

Palette Security

Palette Security defines security settings within the Oracle Insurance Rules Workbench. This section enables the creation of users, assignment of roles, and configuration of role-based privileges across modules such as Rules, Administration, and Data Dictionary.

Important: The Palette Security folder under the Security section is available only in IVS-enabled environments. In non-IVS environments, only the Application Security folder is visible.

Application Security

Application Security provides configuration options to manage security for the Oracle Insurance Policy Administration system. Access can be restricted to authorized screens, components, and actions based on assigned roles.

Security can be managed in the following areas:

  • Screens: Access to specific pages or modules.

  • Plans: Access to business plans and configuration options.

  • Transactions: Access to activity-related components.

  • Activities: Access to task-level functions.

  • UI Elements: Access to buttons, fields, masks, and menu items.

Access may be restricted entirely or limited to specific actions, such as permitting a user to process an activity while preventing deletion. Multiple security roles can be assigned to a user, with each role defining the permitted actions. This supports flexible and configurable access control.

Field-Level Security

Field-level access can be configured as follows:

  • Visible and Editable: Field can be viewed and updated.

  • Disabled: Field can be viewed but not updated.

  • Hidden: Field and its content are not displayed in the user interface.

By default, all fields are visible and editable unless restrictions are specified.