Page History
...
The roles parameters file will look as follows:
<root>
<role>
<parameter name="action" value="add"/>
<parameter name="role-name" value=" test-role1"/>
<parameter name="role-scope" value="technology"/>
<complex name="permissions">
<parameter permission-type="monitor" permission-operation="full_control"/>
<parameter permission-type="administrate" permission-operation="execute"/>
</complex>
<complex name="resources">
<parameter technology-code="OR"/>
<parameter technology-code="OA"/>
</complex>
<complex name="nodes">
<parameter node-name="node1"/>
<parameter node-name="node2"/>
</complex>
</role>
<role>
<parameter name="action" value="add"/>
<parameter name="role-name" value=" test-role2"/>
<parameter name="role-scope" value="application"/>
<complex name="permissions">
<parameter permission-type="monitor" permission-operation="view"/>
<complex name="resources" value="all=true"/>
</role>
</root>
Deleting a role
The definition for deleting a role is as follows:
<root>
<parameter name="action" value="delete"/>
<parameter name="role-name" value="role-name"/>
</root>
...
Info |
---|
The role ‘I3 Manager’ cannot be deleted. |
Verifying user’s roles assignment before deletion
Deleting a role can cause a situation where one or more users will be left with no roles assigned to them (i.e. this role is the only role assigned to one of the users).
It is possible to define that if a role deletion creates this kind of situation, an error will be issued. This definition can be done by setting the following registry parameter to ‘false’:
products\i3fp\registry\products\infrastructure\roles\settings\ignore-last-role-on-delete
...
Info |
---|
This parameter default value is ‘true’. |
Parameters specification
Table 9-4 Parameter values for Deleting a role
Parameter Description
...
Parameter | Description |
---|---|
action | The action we wish to perform on the defined role. Value: delete. Mandatory: Yes |
role- |
...
name | The name of the role we wish to delete. Mandatory: Yes |
Example
In this example we will be deleting one role ‘test-role1’:
<root>
<parameter name="action" value="delete"/>
<parameter name="role-name" value=" test-role1"/>
</root>
Editing a role
The definition for editing a new role is as follows:
<root>
<parameter name="action" value="edit"/>
<parameter name="role-name" value="role-name"/>
[<parameter name="role-scope" value="role-scope"/>]
[<parameter name="role-new-name" value="role-new-name"/>]
<complex name="permissions">
<parameter permission-type="permission-type" permission-operation="permission-operation"/>
…additional permissions definitions
</complex>
<complex name="resources" [value="*">]
[<parameter [resource-information]/>
…additional resources definitions ]
</complex>]
[<complex name="nodes" [value="*"]>
[<parameter node-name="node-name"/>
…additional nodes definitions ]
</complex>]
</root>
Info |
---|
...
The role ‘I3 Manager’ cannot be edited. |
Parameters specification
Table 9-5 Parameter values for Editing a role
...