Using Workflow Approval in OIM 11gR2PS3

With the PS3 release Approval policies have been deprecated by introducing workflow policies. Request generation and approval is governed by workflow policies.
However approval policies will continue to work in case of upgrade. We can configure SOA Workflows conditionally.
This is achieved by creating Approval workflow rules on the basis of any combination of following entity and their attributes:
1. User
2. Role
3. Organization
4. Application
5. Requester
Using this you can:
1. Bypass the workflow
2. Use separate workflows per entity attributes or their combination.
3. Combining two or more conditions to assign single workflow.
These rules can be defined using following format:
IF <Entity attribute><Operator>< Entity attribute Value>
Then
<workflow><workflow name >
These rules resides in the operations.
Some sample workflow rules are as follows:
1. Approval workflow rule for the Modify User operation:
IF requester.adminroles
: CONTAINS: OrclOIMUserAdminRule  THEN
Workflow : Direct
Note: colons used here for sanity and should be ignored.
Here, the rule condition checks if the requester is a member of the User Administrator admin role in the beneficiary’s organization. If the condition is satisfied, then operation is performed without initiating any approval workflow

Comments

Post a Comment

Popular posts from this blog

Troubleshooting Scheduler plugin in OIM

Objective : To understand how to troubleshoot issues with scheduler plugin registered in OIM. Prerequisites: Basic understanding of plugin registration and plugin structure. Understanding of Scheduler and its related artifacts this can be read here . Lets Start: Many a times we face challenges while working with scheduler in OIM. These challenges can be listed as follows: Plugin registration is completed successfully, but still metadata file is not present in mds. Plugin registration is completed successfully, Unable to find metadata file to create scheduled Job. Plugin registration is completed successfully, metadata file also present and scheduled job is also created but its failing and throwing NullPointerException. Plugin registration is completed successfully, but unable to find jar and metadata. and so on.... do let me know if you face any issue other than these: To troubleshoot this here are the steps you should check for: Plugin registration nee...
Read more

Using While Loop in SOA BPEL

Image
Objective of this Post: In this post I will be focusing on the Looping construct “While” which is most commonly used by most programming language. Here we are also going to use simple Java Embedding Activity which allows us to write and execute java code from with in the SOA composite. Prerequisite:  You must have a simple composite like  HelloWorldSOAComposite. Lets Achieve this: We need to follow the steps below to achieve our objective. Open the bpel file in Jdeveloper Add new variable “count” by clicking on   from the top bar.This will open the following window.            Click on Variables and then click on  icon. This will launch another window as follows: Enter variable name as count select type as int click on OK. This will create a global variable count with xsd type int.  Click on close.Now double click on assign Activity.Here we will assign the value to count variable as 5. Click on OK. Click on O...
Read more

Using OIMService API for raising request

With the latest R2PS2 release OIMService API is been provided to raise any kind of request in OIM. It is a simple yet powerful API with single method which can generate any kind of request. It uses Android’s Intent concept to let the framework decide what to do at runtime by exposing following method. OperationResult   doOperation(RequestData requestData,OIMService.Intent intent) Invoking  doOperation  method will result into either request creation or direct operation based on the Intent passed. The intent value can be “ ANY “, “ REQUEST ” or  “ DIRECT “. If Intent is “ ANY “, operation will result in to either request or direct based on authorization of logged-in user. If Intent is “ REQUEST “, a request will be created for the operation. If Intent is “ DIRECT “, operation will be performed immediately, subject to authorization of logged-in user. Very important aspect of using entity key for entitlement is as follows: If you are working on g...
Read more