Enabling data access policies override

The Access Policies Override feature provides a mechanism whereby any API can be called to create or view orders, preventing failure at the access policy layer.

About this task

To enable this feature for integration, use the following settings in Sterling Order Management:

Procedure

  1. Enable the Override Access Policy Permissions flag. In the Applications Manager, navigate to Applications > Application Platform > Load Rules For Organization > Security > Groups > Group Details (WCIntegrationGroup) > Permissions > Cross Application > Applications > Application Console > Override Default Functionality Resources > Override Access Policy Permissions.
  2. In the customer_overrides.properties file, verify that there is no entry with yfs.yfs.massageapiinput.registerextnpoint=N or yfs.yfs.massageapiinput.registerextnpoint=n. Also ensure inyfs.properties_ysc_ext and yfs.properties_ysc files, there is no entry with yfs.massageapiinput.registerextnpoint=N or yfs.massageapiinput.registerextnpoint=n. Additionally, verify that you have not disabled the data security for APIs by specifying the API names as values in the yfs.yfs.dsg.api.disable property. For example, yfs.yfs.dsg.api.disable=<api_name, api_name, api_name>.
    Note: The user override policy will not take effect for the following scenarios:
    • If the JVM or system parameter DISABLE_DS_EXTENSIONS is passed to indicate data security is disabled.
    • If the HUB level installation property (configured in application manager) Use Deprecated Data Security Policy Functionality is enabled in the Applications Manager. This property indicates that old data security policy should be used.