What Are Actor Context Values?

Actor context values are user attributes that can be used for authorization and application defaulting purposes. The basic setup procedure is to designate a key field as a context property and then assign context values for this context property for individual users.

There are several scenarios for how context values are used.

  • In the case of context property key fields that are Enterprise Group fields, the context values are used for filtering. A prime example of this is the HROrganization field in Infor HR Talent. Each user will be assigned a context value for HROrganization and will then be able to view only records within his or her HROrganization.

    Note: 

    This assumes that HROrganization is set up as a context property with the isPervasive flag set to true. Also, if the userModifiable flag is set to true, more than one HROrganization context value can be assigned to users and the users can switch which HROrganization to use in the Infor Rich Client to filter data.

  • If an application includes authorization and conditional rules based on specific key fields, you can set up those key fields as context properties. Then, the context values assigned to users for those context properties will be used for authorization or conditional security processing. See the documentation for your application for information on which context properties you add actor context values for.

    In the following business class example, the Buyer field will default to the Buyer specified by the actor context.

    Buyer
        default to actor.context.Buyer
            constraint (HasBuyerEmail)
            "BuyerMustHaveAnEmailAddress" 

    In the following security class example, the Buyer business class may be accessed only when the Buyer matches the specified Buyer context for the actor.

    Buyer BusinessClass  
        is accessible
            for all actions
            when (Buyer = actor.context.Buyer)

Security administrators can add or modify actor context values for individual actors. In addition, security administrators can modify a set of properties for context properties.