grouper-users - RE: [grouper-users] question about grouper 2.0 web services
Subject: Grouper Users - Open Discussion List
List archive
- From: Chris Hyzer <>
- To: Lynn Garrison <>, "" <>
- Subject: RE: [grouper-users] question about grouper 2.0 web services
- Date: Thu, 29 Sep 2011 15:25:38 +0000
- Accept-language: en-US
The groupDetail is not the group part, it is an extra part inside the group
part which says if the group is a composite, etc.
The subjectDetail means include extra attributes about the subject which are
configured in the grouper-ws.properties file...
Thanks,
Chris
-----Original Message-----
From:
[mailto:]
On Behalf Of Lynn Garrison
Sent: Thursday, September 29, 2011 11:23 AM
To:
Subject: [grouper-users] question about grouper 2.0 web services
I am wondering if I am using the getPermissions REST service incorrectly. I
want to verify that a permission is assigned to a subject and I would like to
limit the data returned with the response. I set both --includeSubjectDetail
and--includeGroupDetail to false, but the subject data and group data are
always returned in response. Am I misunderstanding how these two parameter
work or is there something about the way I am structuring the request that
is causing subject and group information to be included in the response.
Using the grouperClient
I issued the following command:
java -jar grouperClient.jar --operation=getPermissionAssignmentsWs
--attributeDefNameNames='psu:its:apps:cpr:resources:AddAddress'
--subject0SubjectId='llg5' --permissionProcessor=FILTER_REDUNDANT_PERMISSIONS
--includeSubjectDetail=false --includeGroupDetail=false --debug=true
Here is the request
################ REQUEST START (indented) ###############
POST /grouper-ws/servicesRest/v2_0_000/permissionAssignments HTTP/1.1
Connection: close
Authorization: Basic xxxxxxxxxxxxxxxx
User-Agent: Jakarta Commons-HttpClient/3.1
Host: iam2.et-test.psu.edu:8080
Content-Length: 495
Content-Type: text/xml; charset=UTF-8
<WsRestGetPermissionAssignmentsRequest>
<wsAttributeDefNameLookups>
<WsAttributeDefNameLookup>
<name>psu:its:apps:cpr:resources:AddAddress</name>
</WsAttributeDefNameLookup>
</wsAttributeDefNameLookups>
<wsSubjectLookups>
<WsSubjectLookup>
<subjectId>llg5</subjectId>
</WsSubjectLookup>
</wsSubjectLookups>
<includeSubjectDetail>F</includeSubjectDetail>
<includeGroupDetail>F</includeGroupDetail>
<permissionProcessor>FILTER_REDUNDANT_PERMISSIONS</permissionProcessor>
</WsRestGetPermissionAssignmentsRequest>
################ REQUEST END ###############
Here is the response
################ RESPONSE START (indented) ###############
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Set-Cookie: JSESSIONID=xxxxxxxxxxxx; Path=/grouper-ws
X-Grouper-resultCode: SUCCESS
X-Grouper-success: T
X-Grouper-resultCode2: NONE
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Date: Thu, 29 Sep 2011 14:42:17 GMT
Connection: close
<WsGetPermissionAssignmentsResults>
<wsAttributeDefs>
<WsAttributeDef>
<extension>CprWebServicesDef</extension>
<name>psu:its:apps:cpr:resources:CprWebServicesDef</name>
<uuid>2b0bdd8b723e4d0fab9b3c256a4bcd62</uuid>
<attributeDefType>perm</attributeDefType>
<multiAssignable>F</multiAssignable>
<multiValued>F</multiValued>
<valueType>marker</valueType>
</WsAttributeDef>
</wsAttributeDefs>
<wsPermissionAssigns>
<WsPermissionAssign>
<action>access</action>
<permissionType>role</permissionType>
<attributeDefNameId>c85d12c046644c23a9b8e5a940504b08</attributeDefNameId>
<attributeDefNameName>psu:its:apps:cpr:resources:AddAddress</attributeDefNameName>
<attributeDefId>2b0bdd8b723e4d0fab9b3c256a4bcd62</attributeDefId>
<attributeDefName>psu:its:apps:cpr:resources:CprWebServicesDef</attributeDefName>
<enabled>T</enabled>
<attributeAssignId>b8f3ee59f30c418abf08b71f9aa7f979</attributeAssignId>
<roleId>461d41da6c094879a6ecf43b5450f892</roleId>
<roleName>psu:its:apps:cpr:roles:iamTagRole</roleName>
<subjectId>llg5</subjectId>
<sourceId>psu-person</sourceId>
<membershipId>d721265b3bc34524a2433b9636a3d412:0c791c731c0f4d36bda3ba98ebf5a0ad</membershipId>
<allowedOverall>T</allowedOverall>
<disallowed>F</disallowed>
</WsPermissionAssign>
</wsPermissionAssigns>
<resultMetadata>
<resultCode>SUCCESS</resultCode>
<resultMessage>, Found 1 results. </resultMessage>
<success>T</success>
</resultMetadata>
<responseMetadata>
<resultWarnings></resultWarnings>
<millis>87</millis>
<serverVersion>2.0.0</serverVersion>
</responseMetadata>
<wsGroups>
<WsGroup>
<extension>iamTagRole</extension>
<displayExtension>iamTag</displayExtension>
<displayName>psu:its:apps:cpr:roles:iamTag</displayName>
<name>psu:its:apps:cpr:roles:iamTagRole</name>
<uuid>461d41da6c094879a6ecf43b5450f892</uuid>
</WsGroup>
</wsGroups>
<wsSubjects>
<WsSubject>
<resultCode>SUCCESS</resultCode>
<success>T</success>
<id>llg5</id>
<name>LYNN GARRISON</name>
<sourceId>psu-person</sourceId>
</WsSubject>
</wsSubjects>
</WsGetPermissionAssignmentsResults>
################ RESPONSE END ###############
Lynn Garrison
- [grouper-users] question about grouper 2.0 web services, Lynn Garrison, 09/29/2011
- RE: [grouper-users] question about grouper 2.0 web services, Chris Hyzer, 09/29/2011
- Re: [grouper-users] question about grouper 2.0 web services, Lynn Garrison, 09/29/2011
- RE: [grouper-users] question about grouper 2.0 web services, Chris Hyzer, 09/29/2011
- Re: [grouper-users] question about grouper 2.0 web services, Lynn Garrison, 09/29/2011
- RE: [grouper-users] question about grouper 2.0 web services, Chris Hyzer, 09/29/2011
Archive powered by MHonArc 2.6.16.