[midPoint] Connector development - situation deleted

Oleksandr Nekriach o.nekriach at dynatech.lv
Fri Aug 21 13:55:51 CEST 2020


Hi Gustav,
I have done as you wrote but nothing changed.
I have many times recreate and delete accounts but nothing changes.
MP doesn't detect that the account was deleted. Shadow is

 <dead>true</dead>
    <synchronizationSituation>unmatched</synchronizationSituation>

<synchronizationTimestamp>2020-08-21T14:46:05.325+03:00</synchronizationTimestamp>

<fullSynchronizationTimestamp>2020-08-21T14:46:05.325+03:00</fullSynchronizationTimestamp>
    <synchronizationSituationDescription>
        <situation>unmatched</situation>
        <timestamp>2020-08-21T14:43:51.743+03:00</timestamp>
        <channel>
http://midpoint.evolveum.com/xml/ns/public/provisioning/channels-3#reconciliation
</channel>
        <full>true</full>
    </synchronizationSituationDescription>
    <objectClass>ri:AccountObjectClass</objectClass>
    <kind>account</kind>
    <intent>default</intent>
    <exists>false</exists>

Best regards,
Oleksandr


On Thu, 20 Aug 2020 at 17:45, Pálos Gustáv <gustav.palos at gmail.com> wrote:

> Hi Oleksandr,
>
> I think you do not need to do this type of "trick", just return all
> accounts on resource.
> Midpoint takes care to compare shadows vs. accounts of what you returned
> and detect and set the situation DELETED.
>
> Or you have a "soft delete " ? If yes, just don't return these
> accounts over the connector to MP.
>
> Best regards,
>
> Gustav
>
> št 20. 8. 2020 o 15:37 Oleksandr Nekriach <o.nekriach at dynatech.lv>
> napísal(a):
>
>> Hi guys,
>> The short question about custom connector development.
>> I want to inform the IDM reconciliation engine about the situation
>> "DELETED" for some user accounts that were deleted on the custom resource.
>> What should receive the handle() method on its input or what type of
>> exception needs to be raised
>> to do this?
>>
>> public void executeQuery(ObjectClass objectClass, Filter query,
>> ResultsHandler handler, OperationOptions options) {
>> ....
>> handler.handle(null); //  1. Removes shadow object  of deleted user  from
>> IDM
>>
>> throw new UnknownUidException(msg); // 2. Skips processing of account
>> during reconciliation (the "Situation" leaves as is. LINKED for example)
>> and marks shadow as "Dead shadow"
>>
>>
>> Thank you for the help in advance
>>
>>
>> Best regards,
>> Oleksandr
>>
>>
>> Oleksandr Nekriach | Identity and access management engineer
>>
>> Dynatech, Jeruzalemes iela 1, Rīga, LV-1010, Latvia
>> <https://www.google.com/maps/place/DYNATECH/@56.9575205,24.1107235,17z/data=!3m1!4b1!4m5!3m4!1s0x46eecf5753e42351:0x23b120b9745cae62!8m2!3d56.9575205!4d24.1129122>
>>
>> +37125314685 <+371%2025%20314%20685>
>> ,
>> o.nekriach at dynatech.lv
>> |
>> www.dynatech.lv
>>
>>
>> Stay connected:
>> <https://www.facebook.com/DynatechLatvia/?ref=br_rs>
>> <https://www.linkedin.com/company-beta/17893047/>
>>
>>
>> Confidentiality Notice: This message contains confidential information
>> and is intended only for the named recipient(s). If you are not the
>> addressee you may not copy, distribute or perform any other activities with
>> this information. If you have received this transmission in error, please
>> notify us by e-mail immediately. E-mail transmission cannot be guaranteed
>> to be secure or error-free as information could be intercepted, corrupted,
>> lost, destroyed, arrive late or incomplete, or contain viruses.
>> _______________________________________________
>> midPoint mailing list
>> midPoint at lists.evolveum.com
>> https://lists.evolveum.com/mailman/listinfo/midpoint
>>
>
>
> --
> s pozdravom
>
> Gustáv Pálos
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>


-- 
Best regards,



Oleksandr Nekriach | Identity and access management engineer

Dynatech, Jeruzalemes iela 1, Rīga, LV-1010, Latvia
<https://www.google.com/maps/place/DYNATECH/@56.9575205,24.1107235,17z/data=!3m1!4b1!4m5!3m4!1s0x46eecf5753e42351:0x23b120b9745cae62!8m2!3d56.9575205!4d24.1129122>

+37125314685 <+371%2025%20314%20685>
,
o.nekriach at dynatech.lv
|
www.dynatech.lv


Stay connected:
<https://www.facebook.com/DynatechLatvia/?ref=br_rs>
<https://www.linkedin.com/company-beta/17893047/>


Confidentiality Notice: This message contains confidential information and
is intended only for the named recipient(s). If you are not the addressee
you may not copy, distribute or perform any other activities with this
information. If you have received this transmission in error, please notify
us by e-mail immediately. E-mail transmission cannot be guaranteed to be
secure or error-free as information could be intercepted, corrupted, lost,
destroyed, arrive late or incomplete, or contain viruses.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200821/de3b3ad3/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7772
Type: image/png
Size: 786 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200821/de3b3ad3/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7771
Type: image/png
Size: 790 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200821/de3b3ad3/attachment-0001.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: o.nekriach at dynatech.lv1520941785292-7770
Type: image/png
Size: 4265 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200821/de3b3ad3/attachment-0002.png>


More information about the midPoint mailing list