Grouper Users - Open Discussion List

[Chris Hyzer <>]

The groupDetail is not the group part, it is an extra part inside the group 
part which says if the group is a composite, etc.
The subjectDetail means include extra attributes about the subject which are 
configured in the grouper-ws.properties file...

Thanks,
Chris

-----Original Message-----
From: 

 
[mailto:]
 On Behalf Of Lynn Garrison
Sent: Thursday, September 29, 2011 11:23 AM
To: 

Subject: [grouper-users] question about grouper 2.0 web services

I am wondering if I am using the  getPermissions REST service incorrectly.  I 
want to verify that a permission is assigned to a subject and I would like to 
limit the data returned with the response.  I set both --includeSubjectDetail 
and--includeGroupDetail to false, but the subject data and group data are 
always returned in response.  Am  I misunderstanding how these two parameter 
work or is there something about the way  I am structuring the request that 
is causing subject and group information to be included in the response.  



Using the grouperClient
   
I issued the following command:
 java -jar grouperClient.jar --operation=getPermissionAssignmentsWs  
--attributeDefNameNames='psu:its:apps:cpr:resources:AddAddress' 
--subject0SubjectId='llg5' --permissionProcessor=FILTER_REDUNDANT_PERMISSIONS 
--includeSubjectDetail=false --includeGroupDetail=false --debug=true

Here is the request 

################ REQUEST START (indented) ###############

POST /grouper-ws/servicesRest/v2_0_000/permissionAssignments HTTP/1.1
Connection: close
Authorization: Basic xxxxxxxxxxxxxxxx
User-Agent: Jakarta Commons-HttpClient/3.1
Host: iam2.et-test.psu.edu:8080
Content-Length: 495
Content-Type: text/xml; charset=UTF-8

<WsRestGetPermissionAssignmentsRequest>
  <wsAttributeDefNameLookups>
    <WsAttributeDefNameLookup>
      <name>psu:its:apps:cpr:resources:AddAddress</name>
    </WsAttributeDefNameLookup>
  </wsAttributeDefNameLookups>
  <wsSubjectLookups>
    <WsSubjectLookup>
      <subjectId>llg5</subjectId>
    </WsSubjectLookup>
  </wsSubjectLookups>
  <includeSubjectDetail>F</includeSubjectDetail>
  <includeGroupDetail>F</includeGroupDetail>
  <permissionProcessor>FILTER_REDUNDANT_PERMISSIONS</permissionProcessor>
</WsRestGetPermissionAssignmentsRequest>

################ REQUEST END ###############


Here is the response

################ RESPONSE START (indented) ###############

HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=xxxxxxxxxxxx; Path=/grouper-ws
X-Grouper-resultCode: SUCCESS
X-Grouper-success: T
X-Grouper-resultCode2: NONE
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Date: Thu, 29 Sep 2011 14:42:17 GMT
Connection: close

<WsGetPermissionAssignmentsResults>
  <wsAttributeDefs>
    <WsAttributeDef>
      <extension>CprWebServicesDef</extension>
      <name>psu:its:apps:cpr:resources:CprWebServicesDef</name>
      <uuid>2b0bdd8b723e4d0fab9b3c256a4bcd62</uuid>
      <attributeDefType>perm</attributeDefType>
      <multiAssignable>F</multiAssignable>
      <multiValued>F</multiValued>
      <valueType>marker</valueType>
    </WsAttributeDef>
  </wsAttributeDefs>
  <wsPermissionAssigns>
    <WsPermissionAssign>
      <action>access</action>
      <permissionType>role</permissionType>
      
<attributeDefNameId>c85d12c046644c23a9b8e5a940504b08</attributeDefNameId>
      
<attributeDefNameName>psu:its:apps:cpr:resources:AddAddress</attributeDefNameName>
      <attributeDefId>2b0bdd8b723e4d0fab9b3c256a4bcd62</attributeDefId>
      
<attributeDefName>psu:its:apps:cpr:resources:CprWebServicesDef</attributeDefName>
      <enabled>T</enabled>
      <attributeAssignId>b8f3ee59f30c418abf08b71f9aa7f979</attributeAssignId>
      <roleId>461d41da6c094879a6ecf43b5450f892</roleId>
      <roleName>psu:its:apps:cpr:roles:iamTagRole</roleName>
      <subjectId>llg5</subjectId>
      <sourceId>psu-person</sourceId>
      
<membershipId>d721265b3bc34524a2433b9636a3d412:0c791c731c0f4d36bda3ba98ebf5a0ad</membershipId>
      <allowedOverall>T</allowedOverall>
      <disallowed>F</disallowed>
    </WsPermissionAssign>
  </wsPermissionAssigns>
  <resultMetadata>
    <resultCode>SUCCESS</resultCode>
    <resultMessage>, Found 1 results.  </resultMessage>
    <success>T</success>
  </resultMetadata>
  <responseMetadata>
    <resultWarnings></resultWarnings>
    <millis>87</millis>
    <serverVersion>2.0.0</serverVersion>
  </responseMetadata>
  <wsGroups>
    <WsGroup>
      <extension>iamTagRole</extension>
      <displayExtension>iamTag</displayExtension>
      <displayName>psu:its:apps:cpr:roles:iamTag</displayName>
      <name>psu:its:apps:cpr:roles:iamTagRole</name>
      <uuid>461d41da6c094879a6ecf43b5450f892</uuid>
    </WsGroup>
  </wsGroups>
  <wsSubjects>
    <WsSubject>
      <resultCode>SUCCESS</resultCode>
      <success>T</success>
      <id>llg5</id>
      <name>LYNN GARRISON</name>
      <sourceId>psu-person</sourceId>
    </WsSubject>
  </wsSubjects>
</WsGetPermissionAssignmentsResults>

################ RESPONSE END ###############

Lynn Garrison