COmanage Developers List

[Scott Koranda <>]

Hi,

When a call is made to the data source that is backing the
CoGroupMember to create a new entry it gets this data:

Array
(
    [co_group_id] => 16
    [co_person_id] => 1
    [member] => 1
    [owner] => 1
    [modified] => 1334180366
    [created] => 1334180366
)

I propose that I do the following:

- use the co_person_id to find all org_identity_id via the
  co_org_identity_links table that the CoPerson might have

- use the org_identity_id to find all identifiers associated
  with the org_identity_id

- also use the co_person_id to find all identifiers that might
  be associated with CoPerson directly

- make sure the list of identifiers does not contain
  duplicates, and then add those identifiers to the
  represenative Grouper group (and attach the co_group_id,
  co_person_id, member, and owner attributes to each of those
  memberships)

So in this way if both 
''
 and
''
 have been linked with the *same* CoPerson
then both identifiers are added as members of the appropriate
Grouper group, and hence privileges/ACLs flow out for both of
them.

If only 
''
 has been linked to the CoPerson
then only that identifer becomes a member in the Grouper
group.

Does that sound correct?

Scott