Feature #488
Updated by Marcel Poul over 6 years ago
Function specification: Make a report in "implemented reports" module. The report will be available in CSV, JSON, XLSX formats. It will consist of all entities (e.g. Identities) and its attributes (after transformation) that has different values then the value of corresponding account in the connected system. e.g. if there exist in CzechIdM the identity with login "xnovak" and firstName "Petr Pavel" and its corresponding account in LDAP has firstName "Petr", then the report will contain this change. Be aware that the value that is to be compared on the IdM side is the value after the PROVISIONING transformation like this: FirstName (IdM) -> Transformations of attributes(IdM) *VERSUS* firstName (MS AD). Also keep bare in mind that attributes in connected system are computed from 0 or more attributes in IdM. e.g. FirstName + SurName (IdM) -> Transformation (IdM) -> DisplayName (MS AD) There are also some attributes that are not easy to compare, but are necessary to be available in the report. That is especially: *member in AD/LDAP group* - cruacial for us. When report is being prepared by the administrator in GUI, user must be able to specify the system and entity for which the report will be created. Available are only systems that have provisioning mapping defined. MAIN USE CASES: USECASES: * When a connected system e.g. MS AD is to be switched from ReadOnly to ReadWrite we would like to see all changes on all provisioned entities (usually Identities). * Report can be sent to administrator of connected system and he can change the data or approve that IdM can overwrite the values there. Technical design: TOBE done by the ticket implementer