Java EE authorization roles for human tasks

IBM BPM, V8.0.1, All platforms > Securing IBM BPM and applications > Security in human tasks and BPEL processes > Authorization roles for human tasks
Java EE authorization roles for human tasks

System-level Java EE roles are set up when Human Task Manager is configured.
The following Java™ Platform, Enterprise Edition (Java EE) roles are supported:

BusinessCategorySystemAdministrator. Users assigned to this role have all privileges for business categories. This role is also referred to as the business category administrator.
TaskSystemAdministrator. Users assigned to this role have all privileges on tasks and escalations. This role is also referred to as the system administrator for human tasks.
TaskSystemMonitor. Users assigned to this role can view the properties of all of the task and escalation objects. This role is also referred to as the system monitor for human tasks.
WorkBasketSystemAdministrator. Users assigned to this role have all privileges for work baskets. This role is also referred to as the work basket administrator.

You can use the administrative console to change the assignment of users and groups to these roles.
You can use Security Authorization Facility (SAF)-based authorization (for example, using the RACF EJBROLE profile) to control access by a client to Java Platform, Enterprise Edition (Java EE) roles in EJB and web applications, including the task container.

Authorization roles for human tasks

Related information:

Mapping users to the system administrator role
Mapping users to the system monitor role
Commands to implement roles and user assignments