grouper-users - Re: [grouper-users] readonly wheel group
Subject: Grouper Users - Open Discussion List
List archive
- From: Ben Beecher <>
- To: "Hyzer, Chris" <>
- Cc: "" <>
- Subject: Re: [grouper-users] readonly wheel group
- Date: Fri, 24 Feb 2017 16:46:13 -0500
- Ironport-phdr: 9a23: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
This is fixed in 2.3.0 api patch #49
https://bugs.internet2.edu/
jira/browse/GRP-1472
Please try it and let me know how it goes
Thanks
Chris
From: [mailto:] On Behalf Of Hyzer, Chris
Sent: Wednesday, January 25, 2017 9:54 AM
To: Ben Beecher <>
Cc:
Subject: RE: [grouper-users] readonly wheel group
No you don’t, I will look at this soon for you
Thanks
Chris
From: Ben Beecher []
Sent: Wednesday, January 25, 2017 9:49 AM
To: Hyzer, Chris <>
Cc:
Subject: Re: [grouper-users] readonly wheel group
Chris,
Do I need to create a view access group for those people so they can browse everything? I thought readonly wheel included view access.
Ben
On Tue, Jan 24, 2017 at 11:13 AM, Ben Beecher <> wrote:
Hi Chris,
They can't browse to the groups. They can search for a group and then look at the group.
Ben
On Tue, Jan 24, 2017 at 11:01 AM, Hyzer, Chris <> wrote:
Does that mean they cant browse to the groups, or if they had a deep link to a group they cant read it?
Thanks
Chris
From: [mailto:] On Behalf Of Ben Beecher
Sent: Tuesday, January 24, 2017 11:00 AM
To:
Subject: [grouper-users] readonly wheel group
I created a readonly wheel group and added several staff members to the group. It worked fine for a while and it's not working any more. Those users don't have read access to any groups. Here is the relevant portion of the properties file:
$ cat /var/grouper/installGrouper2.
3/grouper.apiBinary-2.3.0/ conf/grouper.properties
# A readonly wheel group allows you to enable non-GrouperSystem subjects to act
# like a root user when reading the registry.
groups.wheel.readonly.use = true
# Set to the name of the group you want to treat as the readonly wheel group.
# The members of this group will be treated as root-like users when reading objects.
groups.wheel.readonly.group = etc:fullreadaccess
Ben
- Re: [grouper-users] readonly wheel group, Ben Beecher, 02/24/2017
Archive powered by MHonArc 2.6.19.