Global privileges

Page group privileges

Object type

Privileges

All Page Groups

None: No global page group privileges are granted.

Manage All: Perform any task on any page group. This privilege supercedes any other privilege in the other global page group privileges. For example, this also allows managing of any page.

Manage Classifications: Create, edit, and delete any category, perspective, custom attribute, custom page type, or custom item type in any page group.

Manage Templates: Create, edit, and delete any page template in any page group. Grant access to any page template.

Manage Styles: Create, edit, and delete any style in any page group.

View: View any page in any page group.

Create: Create page groups, and create any page group object in those page groups. Users or groups with these privileges can also edit and delete the page groups and page group objects they create. Note: These users cannot create any objects in the existing page groups.

All Pages

None: No global page privileges are granted.

Manage: Create, edit, customize, or delete any page in any page group. Grant access to any page in any page group.

Manage Content: Add, edit, hide, show, share, or delete any item, portlet, or tab on any page in any page group.

Manage Items With Approval: Create new items on any page in any page group. These items are not published until approved via a specified approval process. Users or groups with these privileges can also edit the items they create. Users with these privileges cannot add portlets to a page.

Manage Styles: Apply an available or new style to any page in any page group. Create, edit, and delete new styles. Note: Only allows editing of styles created by user (cannot modify or delete other user's styles).

Customize Portlets (Full): Customize any page in any page group to add, show, hide, delete, move, or rearrange portlets. Customize any page to show, hide, delete, or rearrange tabs, or add tabs to existing tabbed regions. Customize any page in any page group to use a different style.

Customize Portlets (Add-only): Customize any page in any page group to add portlets or add tabs to existing tabbed regions. Users or groups with these privileges can also delete the portlets they add. Customize any page in any page group to use a different style.

Customize Portlets (Hide-Show): Customize any page in any page group to show or hide portlets or tabs. Customize any page in any page group to use a different style. Arrange portlets in any page in any page group.

Customize (Style): Customize any page in any page group to use a different style.

View: View any page in any page group.

Create: Create sub-pages in any page group. Users or groups with these privileges can also edit and delete the sub-pages they create. Note: You must have Manage privileges on the root page in a page group in which you want to create the pages.

All Styles

None: No global style privileges are granted.

Manage: Create, edit, and delete any style in any page group.

View: View any style in any page group.

Publish: Make any style in any page group public for other users to use.

Create: Create styles in any page group. Users or groups with these privileges can also edit and delete the styles they create.

All Providers

None: No global provider privileges are granted.

Manage: Register, edit, and deregister any provider, as well as display and refresh the Portlet Repository. Also allowed to grant edit abilities on any provider.

Edit: Edit any registered provider.

Publish: Register and deregister any provider.

Execute: View the contents of any provider.

Create: Register portlet providers. On the provider the user (or group) creates, the user gets a Manage privilege. Thus, he can do all the operations (including edit and deregister) on the particular provider that he has created.

All Portlets

None: No global portlet privileges are granted.

Manage: Create, edit, or delete any portlet in any provider.

Edit: Edit any portlet in any provider.

Execute: Execute any portlet in any provider. Users or groups with these privileges can see all portlets even if the portlet security is enforced. The Show link appears in the Navigator for all portlets.

Access: View any portlet in any provider.

Publish: Publish any page, navigation page, or Portal DB provider portlet to the portal, making it available for adding to pages.

Portal DB provider privileges

Object type

Privileges

All Portal DB Providers

None: No global application privileges are granted.

Manage: Edit, delete, or export any Portal DB provider. Create, edit, delete, or export any portlet in any Portal DB provider. Grant access to any Portal DB provider and any portlet in any Portal DB provider.

Edit Contents: Edit or export any portlet in any Portal DB provider.

View Source: View the package specification and body and run any portlet in any Portal DB provider. Intended primarily for users or groups who may want to look at a portlet's source so they know how to call it.

Customize: Run and customize any portlet in any Portal DB provider.

Run: Run any portlet in any Portal DB provider.

Create: Create Portal DB providers. Users or groups with these privileges can edit, delete, and export the providers they create and create, edit, delete, and export any portlet in them.

All Shared Components

None: No global shared component privileges are granted.

Manage: Create, view, copy, edit, delete, and export any shared component in any Portal DB provider. View and copy any system shared component. Grant access to any non-system shared component.

Create: Create shared components in any Portal DB provider. View and copy any system shared component. View any shared component. Users and groups with these privileges can view, copy, edit, delete, and export the shared components they create.

Administration privileges

Object type

Privileges

All User Profiles

None: No global user profile privileges are granted.

Manage: Edit any user profile. Grant this privilege to other users and groups.

Edit: Edit any user profile.

All Group Privileges (profiles)

None: No global group profile privileges are granted.

Manage: Edit any group profile. Grant this privilege to other groups. The Privileges tab of the group profile allows the user to assign those privileges to the group. The Manage privilege provides the edit privilege and the ability to grant it to others.

Edit: Edit any group portal profile (setting the default home page and default mobile home page).
Note: The ability to change any group's description, memberships and owners is controlled by the Oracle Internet Directory (OID) access control policies which are administered through membership in the OracleDASEditGroup group.

All Schemas

None: No global schema privileges are granted.

Manage: Create, edit, and drop any schema. Grant access to any schema. Create, edit, drop, and rename any database object in any schema. Query, update, delete, and insert data in any table or view in any schema. Compile any function, procedure, package, or view in any schema. Execute any function, procedure, or package in any schema. Grant access to any database object in any schema.

Modify Data: Create schemas. Query, update, delete, and insert data in any table or view in any schema. Compile any function, procedure, package, or view in any schema. Execute any function, procedure, or package in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create.

Insert Data: Create schemas. Query and insert data in any table or view in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create.

View Data: Create schemas. Query data in any table or view in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create.

Create: Create schemas. Users with these privileges can also edit, drop, and grant access to the schemas they create.

Note: If you want a user or group to access the Schemas portlet on the Administer Database tab of the Builder page, either make the user or group a member of the DBA group, or explicitly grant the user or group View privileges on the Administer Database tab. If you do not grant these privileges, the user or group will still be able to use the Navigator to access schemas.

All Logs

None: No global log privileges are granted.

Manage: Edit or purge any log. Grant this privilege to others.

Edit: Edit or purge any log.

View: View any log.

All Transport Sets

None: No global transport set privileges are granted.

Manage: Edit or purge any import or export sets. Grant this privilege to others.

Object type	Privileges
All Page Groups	None: No global page group privileges are granted. Manage All: Perform any task on any page group. This privilege supercedes any other privilege in the other global page group privileges. For example, this also allows managing of any page. Manage Classifications: Create, edit, and delete any category, perspective, custom attribute, custom page type, or custom item type in any page group. Manage Templates: Create, edit, and delete any page template in any page group. Grant access to any page template. Manage Styles: Create, edit, and delete any style in any page group. View: View any page in any page group. Create: Create page groups, and create any page group object in those page groups. Users or groups with these privileges can also edit and delete the page groups and page group objects they create. Note: These users cannot create any objects in the existing page groups.
All Pages	None: No global page privileges are granted. Manage: Create, edit, customize, or delete any page in any page group. Grant access to any page in any page group. Manage Content: Add, edit, hide, show, share, or delete any item, portlet, or tab on any page in any page group. Manage Items With Approval: Create new items on any page in any page group. These items are not published until approved via a specified approval process. Users or groups with these privileges can also edit the items they create. Users with these privileges cannot add portlets to a page. Manage Styles: Apply an available or new style to any page in any page group. Create, edit, and delete new styles. Note: Only allows editing of styles created by user (cannot modify or delete other user's styles). Customize Portlets (Full): Customize any page in any page group to add, show, hide, delete, move, or rearrange portlets. Customize any page to show, hide, delete, or rearrange tabs, or add tabs to existing tabbed regions. Customize any page in any page group to use a different style. Customize Portlets (Add-only): Customize any page in any page group to add portlets or add tabs to existing tabbed regions. Users or groups with these privileges can also delete the portlets they add. Customize any page in any page group to use a different style. Customize Portlets (Hide-Show): Customize any page in any page group to show or hide portlets or tabs. Customize any page in any page group to use a different style. Arrange portlets in any page in any page group. Customize (Style): Customize any page in any page group to use a different style. View: View any page in any page group. Create: Create sub-pages in any page group. Users or groups with these privileges can also edit and delete the sub-pages they create. Note: You must have Manage privileges on the root page in a page group in which you want to create the pages.
All Styles	None: No global style privileges are granted. Manage: Create, edit, and delete any style in any page group. View: View any style in any page group. Publish: Make any style in any page group public for other users to use. Create: Create styles in any page group. Users or groups with these privileges can also edit and delete the styles they create.
All Providers	None: No global provider privileges are granted. Manage: Register, edit, and deregister any provider, as well as display and refresh the Portlet Repository. Also allowed to grant edit abilities on any provider. Edit: Edit any registered provider. Publish: Register and deregister any provider. Execute: View the contents of any provider. Create: Register portlet providers. On the provider the user (or group) creates, the user gets a Manage privilege. Thus, he can do all the operations (including edit and deregister) on the particular provider that he has created.
All Portlets	None: No global portlet privileges are granted. Manage: Create, edit, or delete any portlet in any provider. Edit: Edit any portlet in any provider. Execute: Execute any portlet in any provider. Users or groups with these privileges can see all portlets even if the portlet security is enforced. The Show link appears in the Navigator for all portlets. Access: View any portlet in any provider. Publish: Publish any page, navigation page, or Portal DB provider portlet to the portal, making it available for adding to pages.

Object type	Privileges
All User Profiles	None: No global user profile privileges are granted. Manage: Edit any user profile. Grant this privilege to other users and groups. Edit: Edit any user profile.
All Group Privileges (profiles)	None: No global group profile privileges are granted. Manage: Edit any group profile. Grant this privilege to other groups. The Privileges tab of the group profile allows the user to assign those privileges to the group. The Manage privilege provides the edit privilege and the ability to grant it to others. Edit: Edit any group portal profile (setting the default home page and default mobile home page). Note: The ability to change any group's description, memberships and owners is controlled by the Oracle Internet Directory (OID) access control policies which are administered through membership in the OracleDASEditGroup group.
All Schemas	None: No global schema privileges are granted. Manage: Create, edit, and drop any schema. Grant access to any schema. Create, edit, drop, and rename any database object in any schema. Query, update, delete, and insert data in any table or view in any schema. Compile any function, procedure, package, or view in any schema. Execute any function, procedure, or package in any schema. Grant access to any database object in any schema. Modify Data: Create schemas. Query, update, delete, and insert data in any table or view in any schema. Compile any function, procedure, package, or view in any schema. Execute any function, procedure, or package in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create. Insert Data: Create schemas. Query and insert data in any table or view in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create. View Data: Create schemas. Query data in any table or view in any schema. Users or groups with these privileges can edit, drop, and grant access to the schemas they create. Create: Create schemas. Users with these privileges can also edit, drop, and grant access to the schemas they create. Note: If you want a user or group to access the Schemas portlet on the Administer Database tab of the Builder page, either make the user or group a member of the DBA group, or explicitly grant the user or group View privileges on the Administer Database tab. If you do not grant these privileges, the user or group will still be able to use the Navigator to access schemas.
All Logs	None: No global log privileges are granted. Manage: Edit or purge any log. Grant this privilege to others. Edit: Edit or purge any log. View: View any log.
All Transport Sets	None: No global transport set privileges are granted. Manage: Edit or purge any import or export sets. Grant this privilege to others.

Global privileges

Page group privileges

Object type

Privileges

Portal DB provider privileges

Object type

Privileges

Administration privileges

Object type

Privileges

Related topics