privilege Class Definition

Parent Package

privilege Class Characteristics

name	privilege
type	Class
Role	The privilege object enables security on LCA functions. A privilege grants and revokes access on processes and process groups to someone, that is a person or a role, optionally under a condition.
uuid	80B23F8E-0000-3A1D-385A5B8300000A2A
visibility	Public
Extensible	Yes
CAADerivable	No

privilege Attributes: 10

		authorization			The authorization code
		p_type			The process type
		s_type			The someone type
		data_group			The optional condition.
		grantee			The privilege granted resource (since V5R11)
		owner			The privilege owner (deprecated since V5R11)
		person			The privilege grantee as a person (deprecated since V5R11)
		process			The granted or revoked process
		process_group			The granted or revoked process group
		role			The privilege grantee as a role (deprecated since V5R11)

[Top]

Attributes Full Definition

s_type
	Role	The someone type can be a granted resource (begining with 'g:'), or can be set to public.
	Type	String
	Uuid	80B23F8E-0000-3A1D-385A5B8300000D69
	Visibility	Public
	Mandatory	Yes
	Length	16
	AccessMode	ReadWrite
	Multi Valuated	No
			[Top]
person
	Role	Replaced by privilege / grantee={RscPerson}
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B8300000FF2
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	person
			[Top]
role
	Role	Replaced by privilege / grantee={RscContext}
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B830000125D
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	role
			[Top]
owner
	Role
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B83000014CB
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	role
			[Top]
grantee
	Role	The granted resource can be either a RscPerson, either a RscContext
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B8300001500
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	RscBase
			[Top]
p_type
	Role	The process type can be 'process' or 'process_group'
	Type	String
	Uuid	80B23F8E-0000-3A1D-385A5B83000017DB
	Visibility	Public
	Mandatory	Yes
	Length	16
	AccessMode	ReadWrite
	Multi Valuated	No
			[Top]
process
	Role	The granted or revoked process applies to a process (p_type='process')
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B8300001AB7
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	process
			[Top]
process_group
	Role	The granted or revoked process group applies to a process group (p_type='process_group')
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B8300001DC2
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	process_group
			[Top]
authorization
	Role	The authorization code can take the following values: 0: revoked, 1: granted, and 99: public.
	Type	Integer
	Uuid	80B23F8E-0000-3A1D-385A5B83000023F4
	Visibility	Public
	Mandatory	Yes
	AccessMode	ReadWrite
	Multi Valuated	No
			[Top]
data_group
	Role	A condition is required when the granted process (or processes of the process group) requires a condition. In this case the attribute data_required of each process equals to 1
	Type	Relationship
	Uuid	80B23F8E-0000-3A1D-385A5B83000026D1
	Visibility	Public
	Mandatory	No
	AccessMode	ReadWrite
	Multi Valuated	No
	Aggregation type	Shared
	Target objects	data_group
			[Top]