Trading Networks 10.3 | Administering and Monitoring B2B Transactions | Service Development Help | Properties | Element Properties | Element Permissions
 
Element Permissions
You assign an ACL to an element in the Permissions page of the Properties dialog box. Depending on the element you select, certain access levels are displayed. For example, for a package, you can only set List access. For details about the different levels of access available for elements, see webMethods Integration Server Administrator’s Guide.
The ACLs assigned to an element are mutually exclusive; that is, an element can have different ACLs assigned for each level of access.
To open this page, click the element in the Package Navigator of Designer and select File > Properties > Permissions.
Property
Description
List ACL
Users in the Allowed list of this assigned ACL can see that the element exists and view the element’s metadata (input, output, etc.).
Read ACL
Users in the Allowed list of this assigned ACL can view the source code and metadata of the element.
Write ACL
Users in the Allowed list of this assigned ACL can lock, edit, rename, and delete the element.
Execute ACL
Users in the Allowed list of this assigned ACL can execute the service. This level of access only applies to services and web service descriptors.
Enforce execute ACL
*When top-level service only. The Integration Server performs ACL checking against the service when it is directly invoked from a client or DSP. For example, suppose a client invokes the OrderParts service on server A. After checking port access, server A checks the Execute ACL assigned to OrderParts to make sure the requesting user is allowed to run the service. It does not check the Execute ACL when other services invoke OrderParts.
*Always. The Integration Server performs ACL checking against the service when it is directly invoked from a client as well as when it is invoked from other services. For example, suppose the OrderParts service is invoked from a browser, as well as by the ProcessOrder and AddToDatabase services. If Always is set on OrderParts, the server performs ACL checking on OrderParts three times (once when it is invoked from the browser and twice when it is invoked by ProcessOrder and AddToDatabase).
Note:
This property applies to services only. While you can set an execute ACL for web service descriptors, Integration Server always performs ACL checking when a web service descriptor is called.