Permission given to a user, program,or process to access an object or set of objects. In Oracle applications, authorization is done through the role mechanism. A single person or a group of people can be granted a role or group of roles. A role, in turn, can be granted other roles. The set of privileges available to an authenticated entity.