[midPoint] - Inherited role's mapping not removing value from user
Rodrigo Yanis
ryanis at identicum.com
Tue Aug 29 20:32:57 CEST 2017
Hello everyone,
I'm currently experiencing an issue in MidPoint 3.5.1 where I have a role
with an inducement including a focusMapping, defined as following:
<inducement id="1">
<focusMappings>
<mapping>
<strength>strong</strength>
<source>
<c:path>$focus/extension/someAttribute</c:path>
</source>
<expression>
<script>
<code>
if (someAttribute) { return "someValue" }
else { return null };
</code>
</script>
</expression>
<target>
<c:path>$focus/extension/targetAttribute</c:path>
</target>
</mapping>
</focusMappings>
<orderConstraint>
<orderMax>unbounded</orderMax>
</orderConstraint>
<focusType>UserType</focusType>
</inducement>
So when I directly assign this to a user, the role writes the attribute
"targetAttribute", and when i de-assign it, the value is removed. This is
the expected behavior.
This is not the exact case when the role is induced into another role, and
this last one is assigned to the user. In this case, the "2nd order" role
writes the value correctly, but when the "2nd order" role is de-induced
from the "1st order" role and then the user is recomputed, targetAttribute
value is not removed.
I hope the case is well explained. Anecdotically, I've played with the
orders on the inducements but haven't got any results.
Do you have any suggestions? Is this encompassed on 3.6 release?
Thanks a lot.
*Rodrigo Yanis.*
Identicum S.A.
Jorge Newbery 3226
Tel: +54 (11) 4552-3050
ryanis at identicum.com
www.identicum.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20170829/80b73a45/attachment.htm>
More information about the midPoint
mailing list