[midPoint] Scripted sql resource and role assignment
Pavol Mederly
mederly at evolveum.com
Wed Sep 21 11:23:31 CEST 2016
Hello Mariano,
you need two things:
1) Teach your ScriptedSQL resource how to deal with entitlements. This
requires custom groovy code (as anything in ScriptedSQL connector). I
don't have any at hand; but I'm sure many people on this list have done so.
2) Configure midPoint in such a way that midPoint roles that correspond
to your groups have the following:
- assignment to your resource that would cause the /group/ object
to be created for the role
- inducement to your resource that would cause creation of
/user-group/ relation (this is called the entitlement) when a user has
the role assigned
As for #2, you can see e.g.
https://wiki.evolveum.com/display/midPoint/Entitlements.
Best regards,
Pavol Mederly
Software developer
evolveum.com
On 05.09.2016 19:05, mariano marron wrote:
> Hi everyone! I have the following issue.
> I have a scripted sql resource, and a data base with three tables:
> users (pk: userid), groups (pk: groupid) and usergroups (two foreign
> keys: userid and groupid from the other tables). I am able to create
> users in the users table with the resource, and groups in the groups
> table too. What I would need to do is to create an entry on the
> usergroups table based on the user getting an assignment, using the
> userid and the groupid. Can anyone explain to me how the resource
> should be configured in order to do this, if possible? Thank you very
> much!
>
> Mariano
>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160921/494ed5f7/attachment.htm>
More information about the midPoint
mailing list