Permission Prefix property

Official Content

The purpose of this property is to generate Permissions automatically for the Application where the object belongs.

In run time, this permission will be checked automatically when the object is being executed.

As it is a prefix, it also allows to group different objects in the KB, so as all these objects check the same set of permissions (the objects which have the same prefix).

This property is available at object level. It applies to the following types of objects:

Objects for WEB applications:

Objects for SD applications:

The property is valid in the context of applications where Authorization is going to be checked automatically using GAM.

That is to say, that Enable Integrated Security property is set to Yes and Integrated Security Level property is set to "Authorization" value.

Values

Any string which follows the syntax for GeneXus objects. The default value is the name of the object.

Description

When you specifiy a permission prefix in any web transaction, a set of permissions are created in GAM Repository, named:

<prefix>_FullControl

  • <prefix>_Execute
  • <prefix>_Insert
  • <prefix>_Update
  • <prefix>_Delete

In case of Business Components exposed as a service, the following permissions are created in GAM Repository:

<prefix>_Services.FullControl

  • <prefix>_Services_Execute
  • <prefix>_Services_Insert
  • <prefix>_Services_Update
  • <prefix>_Services_Delete

In case of Web Panels, after specifying a permission prefix the following permission is created in GAM Repository:

  • <prefix>_Execute

All those permissions are automatically assigned to all the applications of the KB.

See GAM Authorization Scenarios.

See also

Automatic Permissions generated by GeneXus
Permissions Created by the User (X Evolution 3)
Integrated Security Level property
Not Authorized Object for Web property
GAM Permissions




Was this page helpful?
What Is This?
Your feedback about this content is important. Let us know what you think.