Skip to Content.
Sympa Menu

grouper-users - RE: [grouper-users] attribute security

Subject: Grouper Users - Open Discussion List

List archive

RE: [grouper-users] attribute security

Chronological Thread 
  • From: Chris Hyzer <>
  • To: Scott Koranda <>, Grouper Users Mailing List <>
  • Subject: RE: [grouper-users] attribute security
  • Date: Tue, 19 Oct 2010 12:12:28 -0400
  • Accept-language: en-US
  • Acceptlanguage: en-US

Good point. Either we can change this, or we can perhaps add another
privilege in addition to UPDATE and ADMIN, e.g. READ_ATTR, UPDATE_ATTR on a
Yeah, this is the same for a stem. Any chance you can get up and running the
way it is, and we can adjust it in 2.0? :)


-----Original Message-----

On Behalf Of Scott Koranda
Sent: Tuesday, October 19, 2010 11:43 AM
To: Grouper Users Mailing List
Subject: [grouper-users] attribute security


On this page

I read this:

"In order to perform operations on attributes, more security
is needed on the underlying objects. For example, to assign
an attribute to a group, you need ATTR_UPDATE on the attribute
and ADMIN on the group."

Does "assign an attribute" include assiging an attribute

If so, I am surprised that ADMIN on the group is necessary and
UPDATE is not sufficient. I would like to give entities the
ability to update or set the value of an attribute on the
group without giving them the ability to delete the group.

Does the same hold true for stems?



Archive powered by MHonArc 2.6.16.

Top of Page