Skip to main content


         This documentation site is for previous versions. Visit our new documentation site for current releases.      
 

Security authorization model

Updated on June 22, 2022

The Payment Exception Recovery application provides the role-based access control (RBAC) security authorization. The RBAC security controls access to portals and processes in the application and is based the access group and access group roles. The RBAC access groups are listed in the Personas section.

Pega Foundation for Financial Services

The Payment Exception Recovery application also provides the attribute-based attribute control policies (ABAC). The security control policies control the read and update access for the case types. The default access rights are listed below as well as the rules which you can modify.

Security Access Control Matrix

Access groupAccess levelClaim case typePayment Exception case type
PFSAPER:BackOfficeUserReadAllAll
PFSAPER:BackOfficeUserUpdate*OwnOwn
PFSAPER:FrontOfficeUserReadAllAll
PFSAPER:FrontOfficeUserUpdate*OwnOwn
PFSAPER:ManagerReadAllAll
PFSAPER:ManagerUpdate*OwnOwn
PFSAPER:AdminALLAllAll
Note: * Includes Create and Update. Update access is necessary to create a case.

ABAC Security Rules

ClassActionPolicy NameApplies toAccess When
PFSA-PER-Data-AccountPropertyReadCardNumberListed propertiesPermitAlways
PFSA-PER-Data-TransactionPropertyReadCardNumberListed propertiesPermitAlways

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Did you find this content helpful?

Want to help us improve this content?

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us