User Entitlement

Owned by Vaishnavi Sridhar (Unlicensed)
Last updated: Jan 16, 2019


The user entitlement provided will enable the user to assume a specific digital identity in the application. This entitlement enables access controls to be assigned and evaluated against this identity.
Entitlements simplify the monitoring and verification of access and enable the organization to minimize excessive privileges granted to one user. Additionally, when the requests are tracked and logged, the entitlements help us in identifying who creates the requests, authorizes it etc.


Currently, the user entitlements are managed using the following tables within the Canvas schema:

  • OD_USER_FUNCTION_MB - The OD_FUNCTION_CODE column shall contain the 'APPROVE' or 'REJECT' values to provide entitlement for any specific user to approve/reject the requests that are associated with any specific OD_PRODUCT_CODE and OD_SUBPROD_CODE.

  • OD_USER ATTRIBUTE - Any user who needs to do any request related activity shall be provided the relevant user role via this table. For example, the attribute _USER_ROLE can be set to 'ALL' to provide all the request related access.

  • OD_FUNCTION_CHANNEL_MAP_MB - This table is used for mapping the channel to the function code.