|
|
2.7.3 Access control policyAn access control policy authorizes a group of users to perform a set of actions on a set of resources within WebSphere Commerce. Unless authorized through one or more access control policies, users have no access to any functions of the system. To understand access control policies understand four main concepts: users, actions, resources, and relationships. Users are the people who use the system. Resources are objects in the system that are to be protected. Actions are the activities that users can perform on the resources. Relationships are optional conditions that exist between users and resources. |
 ibm.com/redbooks |