grouper-users - RE: [grouper-users] Get readers and viewers to work with grouperloader
Subject: Grouper Users - Open Discussion List
List archive
- From: Chris Hyzer <>
- To: Ellen Sluss <>, "" <>
- Subject: RE: [grouper-users] Get readers and viewers to work with grouperloader
- Date: Tue, 7 Sep 2010 14:41:59 -0400
- Accept-language: en-US
- Acceptlanguage: en-US
You need two queries:
1. for the users which has subject_id and group_name (this is set in
grouperLoaderQuery attribute)
2. this is a row for each group, e.g. have a col for group_name, readers,
updaters, (this is set in the grouperLoaderGroupQuery attribute)
About the everyone having read and view, the loader will only append to the
default privileges, not remove what is already there. This is because you
might want to manually add some one-offs to a group or two but not all...
You might be able to do a hook for that, let me know if you are interested
and we can give it a shot... Penn doesn't give world privs by default for
privacy, so I haven't run across that yet... I think that is a better
default for FERPA compliance in a university deployment with student groups,
but it is up to you...
Note, the rules in engine in Grouper 2.0 will allow a system wide default of
off for world readability, then allow certain folders to be recursively world
readable...
Thanks,
Chris
-----Original Message-----
From:
[mailto:]
On Behalf Of Ellen Sluss
Sent: Tuesday, September 07, 2010 1:41 PM
To:
Subject: [grouper-users] Get readers and viewers to work with grouperloader
Hi,
I am trying to create a set of groups through the grouperloader that
have a particular group as the viewer and reader.
So I am using the grouperLoaderType SQL_GROUP_LIST.
My groups get created just fine but the grouper loader won't
automatically set the viewers and readers the way I think the
documentation said it should. My sql looks like this:
select distinct(ucid) as SUBJECT_ID,
'uc:Reference:studentinfo:universitystartquarter:' +
s.universitystartqtr as GROUP_NAME,
'uc:applications:myuchicago:admins' as readers,
'uc:applications:myuchicago:admins' as viewers
from currentstudent s,currentaccount a, individual i
where s.individualid=i.id and a.individualid=i.id and isnull(i.ucid,'')
<> '' and isnull(s.universitystartqtr,'') <> '' and s.universitystartqtr
> '200901'
When I check the read or view privileges on the groups after they have
been created they all show the system wide default of GrouperAll and
nothing else.
By system default we give Everyone read and view privilege when a group
is created. I was hoping when a group for read and view was specified in
the SQL that it would override the system wide default.
Thanks for any advice.
--
--
Ellen Sluss
IDM
IT Services
4-8179
- [grouper-users] Get readers and viewers to work with grouperloader, Ellen Sluss, 09/07/2010
- RE: [grouper-users] Get readers and viewers to work with grouperloader, Chris Hyzer, 09/07/2010
- Re: [grouper-users] Get readers and viewers to work with grouperloader, Ellen Sluss, 09/07/2010
- RE: [grouper-users] Get readers and viewers to work with grouperloader, Chris Hyzer, 09/07/2010
Archive powered by MHonArc 2.6.16.