Security authorization model
The Payment Exception Recovery application provides the role-based access control (RBAC) security authorization. The RBAC security controls access to portals and processes in the application and is based the access group and access group roles. The RBAC access groups are listed in the Personas section.
The Payment Exception Recovery application also provides the attribute-based attribute control policies (ABAC). The security control policies control the read and update access for the case types. The default access rights are listed below as well as the rules which you can modify.
Security Access Control Matrix
Access group | Access level | Claim case type | Payment Exception case type |
PFSAPER:BackOfficeUser | Read | All | All |
PFSAPER:BackOfficeUser | Update* | Own | Own |
PFSAPER:FrontOfficeUser | Read | All | All |
PFSAPER:FrontOfficeUser | Update* | Own | Own |
PFSAPER:Manager | Read | All | All |
PFSAPER:Manager | Update* | Own | Own |
PFSAPER:Admin | ALL | All | All |
ABAC Security Rules
Class | Action | Policy Name | Applies to | Access When |
PFSA-PER-Data-Account | PropertyRead | CardNumber | Listed properties | PermitAlways |
PFSA-PER-Data-Transaction | PropertyRead | CardNumber | Listed properties | PermitAlways |
Previous topic Supplemental information