Project

General

Profile

Actions
Copy link

Task #794

closed

Automatically create a role for Virtual System implementers

Added by Alena Peterová over 6 years ago. Updated over 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Radek Tomiška
Category:
Virtual systems
Target version:
10.5.0
Start date:
10/27/2017
Due date:
% Done:

100%

Estimated time:
Owner:

Description

When initializing the module for Virtual Systems, please create automatically a role for virtual system implementers. These people should be able to:
  • read and process the requests for virtual accounts
  • read the system's name
  • read the name of other implementers

They shouldn't see any other agenda for systems, only the tab Requests.

The configuration of such role is a bit tricky (evaluator for VS requests, autocomplete for other objects), it would be nice to have it ready when the module is activated and no such role already exists.

Related issues

Related to IdStory Identity Manager - Defect #797: Permission for SysSystem (entity type) cannot be setClosedRadek Tomiška10/30/2017

Actions
Related to IdStory Identity Manager - Task #799: Systems - add authorization policies supportNewRadek Tomiška10/31/2017

Actions
Related to IdStory Identity Manager - Task #812: Create init application dataClosedRadek Tomiška11/02/2017

Actions
Actions
Copy link
 #1

Updated by Alena Peterová over 6 years ago

I couldn't find any permission which would grant me SYSTEM AUTOCOMPLETE for reading the system's name. Which permission could be used?

Actions
Copy link
 #2

Updated by Vít Švanda over 6 years ago

  • SysSystem is not now offering in entity type selectbox (was overwrited by provisioning brake). This is a bug and will be fixed in #797.
  • Bigger "problem" is, the permissions for SysSystem are not fully implemented. Now is not possible set separate autocomplete permission.
    Permissions for SysSystem will be implemented in version 7.6.
Actions
Copy link
 #3

Updated by Radek Tomiška over 6 years ago

  • Related to Defect #797: Permission for SysSystem (entity type) cannot be set added
Actions
Copy link
 #4

Updated by Radek Tomiška over 6 years ago

  • Related to Task #799: Systems - add authorization policies support added
Actions
Copy link
 #5

Updated by Radek Tomiška over 3 years ago

  • Related to Task #812: Create init application data added
Actions
Copy link
 #6

Updated by Radek Tomiška over 3 years ago

  • Status changed from New to Needs feedback
  • Target version set to 10.5.0
  • % Done changed from 0 to 90

I added product provided role for virtual system implementer. I improved acount detail to hide system entity and target account properties - till #799 will be implemented (is not possible to set concrete authorization policies now).

Commit:
https://github.com/bcvsolutions/CzechIdMng/commit/de8cc6d6dff07476a7c988f4f2989c6ac6a4409b#diff-2cf002d230e74e1b126b64e1d070b446

Doc:
https://wiki.czechidm.com/devel/documentation/architecture/dev/events/init-data#product_provided_roles

Could you provide me a feedback, please?

Actions
Copy link
 #7

Updated by Vít Švanda over 3 years ago

  • Status changed from Needs feedback to Resolved
  • Assignee changed from Vít Švanda to Radek Tomiška
  • % Done changed from 90 to 100

I did review and tested it within task #812. Thanks for this.

Actions
Copy link
 #8

Updated by Radek Tomiška over 3 years ago

  • Status changed from Resolved to Closed
Actions
Copy link

Also available in: Atom PDF