An authorisation right sets out rules for access a request or function.
Unique signature of the right.
The signature maps the authorisation right to the internal request or function being authorised. Typically the signature is a combination of the lowercase object name, a period, and the lower case request name.
Rule to enforce for right.
The rule is applied when an attempt to access this right occurs.
Default rule for right.
The rule associated with a right may be changed. Being able to identify if the right has been changed and what the original right was is useful for debugging and restoring engines to their default state.