Class AbstractRoleType

  • All Implemented Interfaces:
    Containerable, JaxbVisitable, Objectable, DebugDumpable, Serializable, Cloneable
    Direct Known Subclasses:
    ArchetypeType, OrgType, RoleType, ServiceType

    public abstract class AbstractRoleType
    extends FocusType
    implements Serializable, Cloneable
    <pre> &lt;?xml version="1.0" encoding="UTF-8"?&gt;&lt;p xmlns:a="http://prism.evolveum.com/xml/ns/public/annotation-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:jaxb="http://java.sun.com/xml/ns/jaxb" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:s="http://midpoint.evolveum.com/xml/ns/public/model/scripting-3" xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns:tns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:xjc="http://java.sun.com/xml/ns/jaxb/xjc" xmlns:xsd="http://www.w3.org/2001/XMLSchema"&gt; Abstract class that contains the "essence" of a role. This is kind of "Roleable" interface when speaking in Java terms. &lt;/p&gt; </pre> <pre> &lt;?xml version="1.0" encoding="UTF-8"?&gt;&lt;p xmlns:a="http://prism.evolveum.com/xml/ns/public/annotation-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:jaxb="http://java.sun.com/xml/ns/jaxb" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:s="http://midpoint.evolveum.com/xml/ns/public/model/scripting-3" xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns:tns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:xjc="http://java.sun.com/xml/ns/jaxb/xjc" xmlns:xsd="http://www.w3.org/2001/XMLSchema"&gt; A role implies assignments. The role may "grant" accounts on resources, attributes and entitlements for such accounts. The role can also assign organizational units, other roles or various IDM objects that can be assigned directly to user. Role is in fact just a named set of assignments. &lt;/p&gt; </pre> <pre> &lt;?xml version="1.0" encoding="UTF-8"?&gt;&lt;p xmlns:a="http://prism.evolveum.com/xml/ns/public/annotation-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:jaxb="http://java.sun.com/xml/ns/jaxb" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:s="http://midpoint.evolveum.com/xml/ns/public/model/scripting-3" xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns:tns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:xjc="http://java.sun.com/xml/ns/jaxb/xjc" xmlns:xsd="http://www.w3.org/2001/XMLSchema"&gt; This is the basic building block of role-based access control (RBAC) in the provisioning system. It defines what rights (e.g. accounts) should be given to user, how they should look like (attributes) and what groups or native roles to assign to them (entitlements). &lt;/p&gt; </pre> <p>Java class for AbstractRoleType complex type. <p>The following schema fragment specifies the expected content contained within this class. <pre> &lt;complexType name="AbstractRoleType"&gt; &lt;complexContent&gt; &lt;extension base="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}FocusType"&gt; &lt;sequence&gt; &lt;element name="displayName" type="{http://prism.evolveum.com/xml/ns/public/types-3}PolyStringType" minOccurs="0"/&gt; &lt;element name="identifier" type="{http://www.w3.org/2001/XMLSchema}string" minOccurs="0"/&gt; &lt;element name="inducement" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}AssignmentType" maxOccurs="unbounded" minOccurs="0"/&gt; &lt;element name="authorization" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}AuthorizationType" maxOccurs="unbounded" minOccurs="0"/&gt; &lt;element name="requestable" type="{http://www.w3.org/2001/XMLSchema}boolean" minOccurs="0"/&gt; &lt;element name="delegable" type="{http://www.w3.org/2001/XMLSchema}boolean" minOccurs="0"/&gt; &lt;element name="idempotence" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}IdempotenceType" minOccurs="0"/&gt; &lt;element name="riskLevel" type="{http://www.w3.org/2001/XMLSchema}string" minOccurs="0"/&gt; &lt;element name="condition" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}MappingType" minOccurs="0"/&gt; &lt;element name="adminGuiConfiguration" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}AdminGuiConfigurationType" minOccurs="0"/&gt; &lt;element name="dataProtection" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}DataProtectionType" minOccurs="0"/&gt; &lt;element name="autoassign" type="{http://midpoint.evolveum.com/xml/ns/public/common/common-3}AutoassignSpecificationType" minOccurs="0"/&gt; &lt;/sequence&gt; &lt;/extension&gt; &lt;/complexContent&gt; &lt;/complexType&gt; </pre>
    See Also:
    Serialized Form