To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
What are the best practices for Security
Summary
What are the best practices for SecurityContent
I would be interested to know best practices on below questions.
a) We haven't migrated to the simplified reference role model (ORA) yet. Is it imperative to migrate? How much time do we have for migration to ORA? When will Oracle stop supporting old security roles?
b) we have Custom Employee and Line Managers role: Is it recommended to always use delivered Employee and Line Manager Abstract role? What are the impacts if we don't use the delivered Employee and Line Manager role? Performance?
c) what is recommended to do if we don't want users not to see something in the UI Hide it via page composer or remove the privileges in the security? Does it impact the performance?