REST Services

How to request CA Access to REST Services?

MOS Article Id 2060899.1 

Request access. - REST Services/ATOM Feeds rollout sandbox

Fusion HCM Integration Community 

NOTE ON SOAP SERVICES (R7/R8/R9)

Regarding SOAP Services in Fusion Apps OER:

• • There are 5 utility services used to invoke HCM Loaders/Extracts - these are GA and will continue to be GA

    • • Data Loader Service

      • Extract Actions Service

      • Flow Actions Service

      • Loader Integration Service

      • User Details Service

  • All remaining SOAP Services will eventually be deprecated in favor of REST replacements.

  • Recommendation is for customers to use HDL and get any needed enhancements into the REST roadmap.

  • Urgent cases may be approved for SOAP usage, but with the caveat that these customers will need to migrate to REST within a year from when equivalent REST functionality is made available.

If you have requirements not addressed by the current set of REST Services, please do file them via the Use Cases Log in Fusion HCM Integration Community (You will need to emaill to request access to this site first).

All other SOAP Services are controlled availability and most of these will eventually be deprecated in favor of REST Services/Atom Feeds. Customers that are using the "controlled availability" services due to be deprecated may be required to upgrade within 1 year of REST becoming available.

REST SERVICES Release 9 - Patch Bundle 8 [Controlled Availability]

A set of REST based services are being added in R9/10. These are primarily intended to provide a mechanism for lightweight Real Time Integration of Employee & Work structures data.

Note that these services will be "Controlled Availability" in R9 Patch Bundle 8

You can request CA access to the REST Services by following this MOS Doc Id 2060899.1 

REST Security

All external URLs in the Oracle Fusion Cloud, for RESTful Services, are secured using OWSM, using a server policy that allows the following kinds of client authentication…

1. HTTP Basic Authentication over SSL

2. Oracle Access Manager(OAM) Token-service

3. Simple and Protected GSS-API Negotiate Mechanism (SPNEGO)

4. SAML token

The server security policy used to protect external Fusion REST resources will be oracle/multi_token_over_ssl_rest_service_policy

The REST Resource itself is also protected by functional & data security. Functional security ensures that the user that is trying to access the REST resource must have a role that has access to that resource. Data Security ensures that records returned are only those that the user has access to. Note that the client app is responsible for field level security as this is not handled by data security, but is instead handled by the Fusion Screens.

  when significant changes are made to this website..

Legal Disclaimer: All opinions are mine and do not necessarily reflect views or opinions of my employer.                                                                                                                                                                                                             Author: Kiran Mundy