[midPoint] Replace Manager from OrgUnit
Yakov Revyakin
yrevyakin at gmail.com
Sat Oct 22 21:21:30 CEST 2022
Your code looks like a mix of two things you need to implement separately.
1) Schema handling must be responsible for update of an Org
2) User objectTemplate must be responsible for manager
assignment/revocation
On Fri, 14 Oct 2022 at 20:02, Ruy Minoru Ito Takata via midPoint <
midpoint at lists.evolveum.com> wrote:
>
> Hi,
> I'm using CSV file to create a org tree and assign a manager to each one.
> But when there are a change in manager, the new manager is added and the
> old manager is not removed.
>
> Like in the book, the org CSV has orgnum, orgname, and manager identifier.
> I made two resources, one to build the org tree, and another to assign
> manager to the orgs.
>
> The resource that assigns manager to the orgs has a assignmentTargetSearch
> to find the org and change the assignment attribute of the user. So, when a
> user is no more manager of an org, his identifier disappear from the CSV
> file.
>
> What is the correct way to do this?
>
> My CSV org file is like:
> orgnum,orgname,orgmanager
>
> My schemahandling:
> <schemaHandling>
> <objectType>
> <displayName>Organizational Unit Manager</displayName>
> <objectClass>ri:AccountObjectClass</objectClass>
> <kind>account</kind>
> <default>true</default>
> <attribute>
> <ref>ri:orgmanager</ref> <!-- employeeNumber -->
> <inbound>
> <target>
> <path>$focus/employeeNumber</path>
> </target>
> </inbound>
> </attribute>
> <attribute>
> <ref>ri:orgnum</ref> <!-- organization code -->
> <inbound>
> <expression>
> <assignmentTargetSearch>
> <targetType>c:OrgType</targetType>
> <assignmentProperties>
> <relation>org:manager</relation>
> <subtype>csvorgmanager</subtype>
> </assignmentProperties>
> <filter>
> <q:equal>
> <q:path>identifier</q:path>
> <expression>
> <path>$input</path>
> </expression>
> </q:equal>
> </filter>
> </assignmentTargetSearch>
> </expression>
> <target>
> <path>$focus/assignment</path>
> <set>
> <condition>
> <script>
> <code>
> return
> input.subtype.contains("csvorgmanager")
> </code>
> </script>
> </condition>
> </set>
> </target>
> </inbound>
> </attribute>
> </objectType>
> </schemaHandling>
>
> Thanks
> [image: Serpro]
> *Ruy Minoru Ito Takata*
> Analista
> Superintendência de Segurança da Informação
> Diretoria de Operações
> +55 (11) 2173-1799
>
>
>
> “Essa mensagem do SERVIÇO FEDERAL DE PROCESSAMENTO DE DADOS (SERPRO),
> empresa pública federal regida pelo disposto na Lei Federal nº 5.615, é
> enviada exclusivamente ao destinatário informado e pode conter dados
> pessoais, protegidos pela Lei Geral de Proteção de Dados (Lei 13.709/2018),
> assim como informações confidenciais, protegidas por sigilo profissional. O
> SERPRO ressalta seu comprometimento em assegurar a segurança e a proteção
> das informações contidas neste e-mail e informa que a sua utilização
> desautorizada é ilegal e sujeita o infrator às penas da lei. Se você o
> recebeu indevidamente, queira, por gentileza, reenviá-lo ao emitente,
> esclarecendo o equívoco.” “This message from SERVIÇO FEDERAL DE
> PROCESSAMENTO DE DADOS (SERPRO) - a government company established under
> Brazilian law (5.615/70) - is directed exclusively to its addressee and may
> contain personal data protected by the General Data Protection Law
> (13.709/2018) as well as confidencial data, protected under professional
> secrecy rules. SERPRO highlights its commitment to ensuring the security
> and protection of the information contained in this email and its
> unauthorized use is illegal and may subject the transgressor to the law´s
> penalties. If you´re not the addressee, please send it back, elucidating
> the failure.”
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20221022/de8c2f20/attachment.htm>
More information about the midPoint
mailing list