Skip to Content.
Sympa Menu

grouper-users - Re: [grouper-users] Privileges on Grouper attributes

Subject: Grouper Users - Open Discussion List

List archive

Re: [grouper-users] Privileges on Grouper attributes

Chronological Thread 
  • From: <>
  • To: Keith Hazelton <>, <>
  • Subject: Re: [grouper-users] Privileges on Grouper attributes
  • Date: Wed, 27 Feb 2013 09:25:43 -0500
  • Authentication-results:; dkim=neutral (message not signed) header.i=none

Yes there are API/ui/ws calls for attr privs

Privs are at the attr def level, not the name level, this is by design so you can share privs among attrs where you can


----- Reply message -----
From: "Keith Hazelton" <>
To: <>
Subject: [grouper-users] Privileges on Grouper attributes
Date: Tue, Feb 26, 2013 11:01 pm

I see in
# If set to _true_, the ALL subject will be granted that privilege on
# each new attributeDef that is created.  
attributeDefs.create.grant.all.attrAdmin         = false
attributeDefs.create.grant.all.attrOptin         = false
attributeDefs.create.grant.all.attrOptout        = false
attributeDefs.create.grant.all.attrRead          = false
attributeDefs.create.grant.all.attrUpdate        = false
attributeDefs.create.grant.all.attrView          = false

My questions are
1) If attributeDefs were created with all these set to false, are there Grouper API calls to grant these privileges selectively to groups and/or individuals?
2) Are there also privileges like this on individual attributes as well as attributeDefs?


Archive powered by MHonArc 2.6.16.

Top of Page