Grouper Users - Open Discussion List

[Tom Zeller <>]

No, it looks like eduCourseMember is difficult to provision easily.

I think it's possible - in theory.

For every value of eduCourseMember, you would need to run ldappc with a configuration like :

<memberships>

  <member-groups-list list-object-class="eduMember"

      list-attribute="eduCourseMember" naming-attribute="Learner" />

  </memberships>

And, of course, you would need to configure the Learner attribute (and Instructor, etc.) to be the role@eduCourseOffering value. And, I assume that you have a group for each role.

Obviously this is not a desirable situation.

In the short term, it might be possible to allow the following :

<memberships>

 <member-groups-list list-object-class="eduMember"

      list-attribute="isMemberOf" naming-attribute="name" />

  <member-groups-list list-object-class="eduMember"

      list-attribute="eduCourseMember" naming-attribute="Learner" />

  ...

  </memberships>

so that one could provision in one ldappc run.

If you use custom lists, one for each role on a single group representing an eduCourse, then we would need to allow :

<member-groups-list list-object-class="eduMember"

      list-attribute="eduCourseMember" naming-attribute="Learner" naming-list="custom_list" />

For 1.5+, we're going to attempt to use Shibboleth's AttributeResolver to calculate attributes for provisioning. Either the Template or Scoped AttributeDefinition would probably work for eduCourseMember.

This is a good use case that we should support.

TomZ

On Fri, Jun 12, 2009 at 1:24 PM, Tim Darby <> wrote:

Is there a way to configure LDAPPC to provision the eduCourseMember
attribute? I don't see a way to provision a value format of
role@eduCourseOffering.

Tim