[midPoint] Channel selection for policy constraints
iam-mailing at tk.de
iam-mailing at tk.de
Fri Mar 27 11:57:02 CET 2020
Hello together,
we use the rest interface for our custom web UI which a normal End-user will use. On the other hand, we have a small pool of users that will use the MidPoint UI for administration purposes and for manual tasks. If a user requests a change with the custom web UI, the system should create cases - only for reporting or with approver steps. If an administrative user edits a user with the MidPoint UI, the changes should be applied directly without approvals.
We use policy constraints in roles, which are assign to all user to produce such cases and approver steps. That works very well. But if we have manual tasks for the midpoint administrators, we don't want that the system produce any cases or approver steps.
Does anyone knows a way to detect if a request is from the midpoint UI (Administrators) or from the REST API (End-Users)? We looked for a channel mechanic like in the resource, but didn't succeed.
Thanks in advanced
Stephan Hoepfner
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20200327/36430443/attachment.htm>
More information about the midPoint
mailing list