Security in Oracle Visual Builder Cloud Applications

Oracle Visual Builder Cloud Applications

With Visual Builder Cloud Service (VBCS), Oracle allows developers to quickly develop and deploy mobile and web applications, all from the browser window. With simple drag and drop actions, VBCS is simple, yet powerful tool to build modern web and mobile applications.

Enterprise applications space has always been dominated by Oracle, and with Fusion Cloud applications (SaaS) taking center stage – VBCS is only a natural extension (PaaS) to that ecosystem.

While developing and deploying may be seem simple, due care must be taken to secure the application. It is in this context, we would like to

explain how application and data security can be enforced in the VBCS applications.

Oracle Visual Builder Cloud Service allows to secure the application in the following ways:

  • Application Security
  • Data Security

Application security (role based) is to restrict the users access only the components that they are supposed to. It hides all other pages in the application.

In VBCS, we can set restrictions on entire pages, or just on certain components in a page. When we want to restrict access to a text field or a button in a page, we use dynamic UI controls.

As an example, we can hide the navigation button to a page or a tab by use of the below expression to set component visibility by role:

<oj-bind-if test=“$application.user.roles.role_name” >  </oj-bind-if>

Data Security controls what data a user can access in the application.

Role based security alone is not enough to make an application secure – we must always use it with data security to build a robust and secure application.

When we secure the data to be exposed for a specific user, even if someone spoofs the role, the REST call only returns an empty data set.

In the illustration below, we show how a page can be secured only for specific application roles:

  1. In the Business Objects panel, open the Business Object Editor
  2. Click the Security tab in the editor, click the icon next to Role-based Security to enable it.

For setting Role-Based view restrictions on a page we use the following JSON code snippet in JSON Metadata of the page/flow:

“security”: {   

“access”: {      

“requiresAuthentication”: true,     

“roles”: [“role_name“]    

}}

After adding the above code snippet, open the ‘Who Am I?’ utility and run the page as a user who does not have access, the page will no longer load as shown below:

To know more about how Oracle Visual Builder Cloud Service can benefit your business requirements, Contact us.

Leave a Reply

Retype the CAPTCHA code from the image
Change the CAPTCHA codeSpeak the CAPTCHA code
 

SOAIS - Worksoft Newsletter

To view on your browser, click here
Facebook Twitter LinkedIn
Dear Default Value,
 

Welcome to SOAIS Newsletter of September 2021!

Continuous Testing with Remote Execution
 
The speed of innovation continues to increase, driving rapid and relentless change for today’s ever-evolving IT landscapes, creating greater risk as IT and business teams scramble to ensure timely delivery. How can your organization keep pace? Test more, worry less. With Worksoft’s Connective Automation Platform, you can easily build and maintain automated tests, accelerating testing time without losing scope or volume. You can schedule and execute remote, continuous tests to intercept defects sooner and prioritize remediation - without sacrificing your nights and weekends. Explore how continuous test automation and remote execution can empower your organization.

Click here to connect with us to get more information on our services.
 

Skip Costly Rework with Dynamic Change Resiliency​

Change resiliency is imperative in ever-evolving IT environments. Our patented object action framework streamlines change management by assigning object definitions to your shared assets. The same object may be used in a thousand automation steps, but it can be easily updated by making one simple change to the model definition. The change automatically propagates to every single instance where that object may have been used without a single line of code or manual human involvement. For more change readiness you can also engage our Impact Analysis for SAP to predict how changes in SAP transports will affect your business processes. 

Please click here to watch the video to get a gist.
 

SOAIS Blog – Nuts and bolts of Certify Database Maintenance​

One of the key thing, which is often missed by the organizations, who have invested in using Worksoft Certify for automating their Business Process Validation initiatives, is implementing a Database Maintenance Plan. While the business and the test automation consultants get excited about the shiny new thing that they have got and start building the regression suite; planning and executing a database maintenance plan for most of the customers gets pushed down the priority list. However, since all the test assets in Certify are stored in a Database, a robust database maintenance plan is very important to maintain smooth operation of Certify with acceptable performance criteria. The customers usually start facing issues once they have built significant number of Certify processes which they have started executing on regular basis. Such executions add a lot of data to the tables storing results data and increase the overall size of the Certify database.

Please click here to read the complete blog.
 

Worksoft Blog – Process Intelligence: A Multi-Dimensional Approach

The ability to extract process knowledge has become easier through the years. Technology has evolved to the point where we can deploy capabilities that connect at multiple levels to extract different types of process insight. In the past, organizations were forced to spend enormous energy extracting data manually from different applications and databases. Then, they would have to use things like spreadsheets to transform the data and convert it into meaningful information. 

Please click here and read the complete blog.
 
India
Unit 9, Level 5, Navigator, ITPL,
Bangalore - 560 066.
Phone: +91 80 40071234
US
Suite 101, 1979, N Mill St,
Naperville, IL 60563
Phone 1-800-262-2427
Please click here to Unsubscribe / Unsubscribe Preferences

Leave us your info