Security Roles
A security role is a set of privileges and levels of access to various actions/ functions within the FintechOS Platform. Read the Security Roles topic for detailed information.
Distribution Management has a set of predefined security roles specific for third-party entities management related business needs. Institutions can use these security roles to grant their employees access rights within its systems. Read the Users topic for information about associating security roles to users in FintechOS Studio.
You can also create new security roles to fit your institution's business needs.
To access Distribution Management features, make sure that your system users are activated, then grant them the
Registered Users default security rolePredefined Distribution Management Security Roles
Depending on your installation of Distribution Management, specifically if it is used in conjunction with Loan Management or not, the installation package comes with the following predefined security roles that grant specific access rights to the users associated with one or more of these roles to the FintechOS Platform's actions and functions:
-
Distribution Management Admin - Users with this security role have
read, write, updateanddeleteaccess rights to the commission schema, commission type and commission records, as well asread, write, updateandauthorizeaccess rights to third-party agreements and their underlying invoice details. -
Distribution Management Officer - Users with this security role have to have
read, writeandupdateaccess rights to third-party agreements and their underlying invoice details. -
Distribution Management Admin Banking - This role comes with the Distribution Management for Banking package. Users with this security role have
read, write, updateanddeleteaccess rights to the commission schema, commission type and commission records, as well asread, write, updateandauthorizeaccess rights to third-party agreements and their underlying invoice details, all in the context of Loan Management business specificity. -
Distribution Management Officer Banking - This role comes with the Distribution Management for Banking package. Users with this security role have to have
read, writeandupdateaccess rights to third-party agreements and their underlying invoice details, all in the context of Loan Management business specificity. -
Async Engine Admin - Users with this security role can access the DLQ Messages dashboard and resend unprocessed requests to the Async Engine.
If your user has more than one role, then your access rights are cumulative and you are granted the highest access right.
Read the following sections for detailed information about each security role's access rights to entities and endpoints within the FintechOS Platform:
Distribution Management Admin
A user with this security role has the following access rights to records in the FintechOS Platform's entities within their organization:
| Entity | Insert | Read | Update | Delete |
| entity | No | Yes | No | No |
| PeriodicityType | No | Yes | No | No |
| Currency | No | Yes | No | No |
| EntityStatusSettings | No | Yes | No | No |
| Agreement | Yes | Yes | Yes | Yes |
| AgreementPricing | Yes | Yes | Yes | Yes |
| AgreementType | Yes | Yes | Yes | Yes |
| Commission | Yes | Yes | Yes | Yes |
| CommissionSchema | Yes | Yes | Yes | Yes |
| CommissionType | Yes | Yes | Yes | Yes |
| CommissionValue | Yes | Yes | Yes | Yes |
| Configuration | Yes | Yes | Yes | Yes |
| Invoice | Yes | Yes | Yes | Yes |
| InvoiceDetail | Yes | Yes | Yes | Yes |
| InvoiceType | Yes | Yes | Yes | Yes |
| SystemParameter | Yes | Yes | Yes | Yes |
| optionset | No | Yes | No | No |
| workflow | No | Yes | No | No |
A user with this security role can access the following endpoints:
| Endpoint |
| FTOS_COM_GetPeriodicityTypeInfo |
| FTOS_TPM_AddInvoiceDetailBtnAction |
| FTOS_TPM_CalculateInvoiceAmounts |
| FTOS_TPM_CheckInvoiceHasDetails |
| FTOS_TPM_CommissionSchemaDetail |
| FTOS_TPM_GetAgreementBusinessStatusDisplayName |
| FTOS_TPM_GetCommissionInfo |
| FTOS_TPM_GetDataSourceChartAgreement |
| FTOS_TPM_GetDefaultAgreementType |
| FTOS_TPM_GetProductEndpoint |
| FTOS_TPM_GetProductTypeEndpoint |
| FTOS_TPM_GetSystemInvariantDate |
| FTOS_TPM_GetSystemParameter |
| FTOS_TPM_GetTransactionTypesForClawback |
Distribution Management Officer
A user with this security role has the following access rights to records in the FintechOS Platform's entities within their organization:
| Entity | Insert | Read | Update | Delete |
| Account | Yes | Yes | Yes | Yes |
| Currency | Yes | Yes | Yes | Yes |
| EntityStatusSettings | No | Yes | No | No |
| Agreement | Yes | Yes | Yes | No |
| AgreementPricing | Yes | Yes | Yes | No |
| AgreementType | No | Yes | No | No |
| Commission | No | Yes | No | No |
| Invoice | Yes | Yes | Yes | No |
| InvoiceDetail | Yes | Yes | Yes | No |
| InvoiceType | No | Yes | No | No |
| workflow | No | Yes | No | No |
A user with this security role can access the following endpoints:
| Endpoint |
| FTOS_TPM_AddInvoiceDetailBtnAction |
| FTOS_TPM_CalculateInvoiceAmounts |
| FTOS_TPM_CheckInvoiceHasDetails |
| FTOS_TPM_GetAgreementBusinessStatusDisplayName |
| FTOS_TPM_GetDataSourceChartAgreement |
| FTOS_TPM_GetDefaultAgreementType |
| FTOS_TPM_GetProductEndpoint |
| FTOS_TPM_GetProductTypeEndpoint |
| FTOS_TPM_GetSystemInvariantDate |
| FTOS_TPM_GetSystemParameter |
| FTOS_TPM_GetTransactionTypesForClawback |
Async Engine Admin
A user with this security role can access the DLQ Messages dashboard and the following endpoints:
| Endpoint |
| FTOS_AE_GetMessagesFromQueues |
| FTOS_AE_ReprocessMessage |
Distribution Management for Banking security roles
The Distribution Management for Banking package comes with banking-specific security roles which allow users to access more entities needed for Loan Management-specific processes:
Distribution Management Admin Banking
A user with this security role has the following access rights to records in the FintechOS Platform's entities within their organization:
| Entity | Insert | Read | Update | Delete |
| Account | Yes | Yes | Yes | Yes |
| attribute | No | Yes | No | No |
| entity | No | Yes | No | No |
| AccountFunctionality | No | Yes | No | No |
| AccountFunctionality_X_Account | Yes | Yes | Yes | Yes |
| AccountExtension | Yes | Yes | Yes | Yes |
| BankAccount | No | Yes | No | No |
| Contract | No | Yes | No | No |
| ContractEvent | No | Yes | No | No |
| Payment | Yes | Yes | Yes | No |
| PeriodicityType | No | Yes | No | No |
| AccountType | No | Yes | No | No |
| Currency | No | Yes | No | No |
| EntityStatusSettings | No | Yes | No | No |
| Agreement | Yes | Yes | Yes | Yes |
| Agreement_BW | Yes | Yes | Yes | Yes |
| AgreementPricing | Yes | Yes | Yes | Yes |
| AgreementType | Yes | Yes | Yes | Yes |
| Commission | Yes | Yes | Yes | Yes |
| CommissionSchema | Yes | Yes | Yes | Yes |
| CommissionType | Yes | Yes | Yes | Yes |
| CommissionValue | Yes | Yes | Yes | Yes |
| Configuration | Yes | Yes | Yes | Yes |
| Invoice | Yes | Yes | Yes | Yes |
| InvoiceDetail | Yes | Yes | Yes | Yes |
| InvoiceType | Yes | Yes | Yes | Yes |
| SystemParameter | Yes | Yes | Yes | Yes |
| optionset | No | Yes | No | No |
| workflow | No | Yes | No | No |
A user with this security role can access the following endpoints:
| Endpoint |
| FTOS_CB_GetDataSourceChartAgreement |
| FTOS_CB_GetSystemInvariantDate |
| FTOS_CB_GetSystemParameter |
| FTOS_COM_GetPeriodicityTypeInfo |
| FTOS_COM_GetStatusSettings |
| FTOS_GetDataSourceChartContract |
| FTOS_TPM_AddInvoiceDetailBtnAction |
| FTOS_TPM_CalculateInvoiceAmounts |
| FTOS_TPM_CheckInvoiceHasDetails |
| FTOS_TPM_CommissionSchemaDetail |
| FTOS_TPM_GetAgreementBusinessStatusDisplayName |
| FTOS_TPM_GetBankingProductForPricing |
| FTOS_TPM_GetBankingProductTypeForPricing |
| FTOS_TPM_GetCommissionInfo |
| FTOS_TPM_GetDefaultAgreementType |
| FTOS_TPM_GetProductEndpoint |
| FTOS_TPM_GetProductTypeEndpoint |
| FTOS_TPM_GetSystemInvariantDate |
| FTOS_TPM_GetSystemParameter |
| FTOS_TPM_GetTransactionTypesForClawback |
| FTOS_VerifyUsersCompetence |
Distribution Management Officer Banking
A user with this security role has the following access rights to records in the FintechOS Platform's entities within their organization:
| Entity | Insert | Read | Update | Delete |
| Account | Yes | Yes | Yes | Yes |
| attribute | No | Yes | No | No |
| AccountFunctionality | No | Yes | No | No |
| AccountFunctionality_X_Account | Yes | Yes | Yes | Yes |
| AccountExtension | Yes | Yes | Yes | Yes |
| BankAccount | No | Yes | No | No |
| Contract | No | Yes | No | No |
| ContractEvent | No | Yes | No | No |
| Payment | Yes | Yes | Yes | No |
| AccountType | No | Yes | No | No |
| Currency | No | Yes | No | No |
| EntityStatusSettings | No | Yes | No | No |
| Agreement | Yes | Yes | Yes | No |
| Agreement_BW | Yes | Yes | Yes | Yes |
| AgreementPricing | Yes | Yes | Yes | No |
| AgreementType | No | Yes | No | No |
| Commission | No | Yes | No | No |
| Configuration | No | Yes | No | No |
| Invoice | Yes | Yes | Yes | No |
| InvoiceDetail | Yes | Yes | Yes | No |
| InvoiceType | No | Yes | No | No |
| SystemParameter | No | Yes | No | No |
| optionset | No | Yes | No | No |
| workflow | No | Yes | No | No |
A user with this security role can access the following endpoints:
| Endpoint |
| FTOS_CB_GetDataSourceChartAgreement |
| FTOS_CB_GetSystemInvariantDate |
| FTOS_CB_GetSystemParameter |
| FTOS_COM_GetStatusSettings |
| FTOS_GetDataSourceChartContract |
| FTOS_TPM_AddInvoiceDetailBtnAction |
| FTOS_TPM_CalculateInvoiceAmounts |
| FTOS_TPM_CheckInvoiceHasDetails |
| FTOS_TPM_GetAgreementBusinessStatusDisplayName |
| FTOS_TPM_GetBankingProductForPricing |
| FTOS_TPM_GetBankingProductTypeForPricing |
| FTOS_TPM_GetProductEndpoint |
| FTOS_TPM_GetProductTypeEndpoint |
| FTOS_TPM_GetSystemInvariantDate |
| FTOS_TPM_GetSystemParameter |
| FTOS_TPM_GetTransactionTypesForClawback |
| FTOS_VerifyUsersCompetence |