Not Able to Remove External Role in Security Console

(Doc ID 2342200.1)

Last updated on JANUARY 11, 2018

Applies to:

Oracle Fusion Sales Cloud Service - Version 11.12.1.0.0 and later
Information in this document applies to any platform.

Symptoms

On : 11.12.1.0.0 version, Accounts, Contacts, Households

ACTUAL BEHAVIOR
---------------
A user that does not have a certain role is able to create account, but should not be able to due to it being restricted by groovy

EXPECTED BEHAVIOR
-----------------------
Account trigger has bee created limit roles that can create Accounts
Groovy used: adf.context.getSecurityContext().isUserInRole('[Role Name]')
If User has this role, then the user can create an account

STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Create Trigger in R12 as in R11
2. Login with a user that does not have the excluded role
3. Accounts are created but should not be

BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users are creating an account but should not be able to

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms