[midPoint] Role auto-assignment based on user's parentOrgRef
Yakov Revyakin
yrevyakin at gmail.com
Sun Jan 30 15:19:34 CET 2022
It looks like we can't use the following condition to auto-assign a role to
users who have an organization assigned. I can see the assignment process
is not able to get any delta for parentOrgRef. Probably I missed something?
I was able to implement the approach with metarole from here:
https://lists.evolveum.com/pipermail/midpoint/2016-November/002864.html
But this method requires manually adding appropriate roles in metarole's
inducements.
Is there any solution to auto-assign a role directly to a user based on his
parentOrgRef value change?
<role>
<name>AutoDummyUserRole</name>
<autoassign>
<enabled>true</enabled>
<focus>
<mapping>
<trace>true</trace>
<strength>strong</strength>
<source>
<path>parentOrgRef</path>
</source>
<condition>
<script>
<code>return parentOrgRef != null;</code>
</script>
</condition>
</mapping>
<selector>
<type>UserType</type>
</selector>
</focus>
</autoassign>
</role>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20220130/ff7e1b02/attachment.htm>
More information about the midPoint
mailing list