Hi Nila, In C4, we consider roles and groups are the same. That's why when you add groups to a user, IS set those values as roles to that user.
But in C5, we will have two separate concepts for Group and Role. Group - Collection of users Role - Collection of permissions We can assign roles to a group. Thanks, Thanuja On Sun, Nov 19, 2017 at 6:06 PM, Nilasini Thirunavukkarasu < nilas...@wso2.com> wrote: > Hi, > > I have added a group with a user by invoking scim group endpoint. It has > been added under roles and shown as below in user profile (As we expected). > > > Here > 1) What is the use case of 'Groups' attribute in the above user profile? > 2) Why we are having two local claims (groups & role)? > 3) Why we are having two claims (groups & roles) for scim as follows:- > 1. > Claim URI urn:scim:schemas:core:1.0:groups > Mapped Local Claim http://wso2.org/claims/groups > > 2. > Claim URI urn:scim:schemas:core:1.0:roles > Mapped Local Claim http://wso2.org/claims/role > > > 4) How can we give values for Groups through SCIM? > > Tried the scenario with both LDAP and JDBC in IS 5.3.0. > > Please correct me If I have misunderstood. Any help on this would be > highly appreciated. > > Thanks, > Nila. > > > -- > Nilasini Thirunavukkarasu > Software Engineer - WSO2 > > Email : nilas...@wso2.com > Mobile : +94775241823 <+94%2077%20524%201823> > Web : http://wso2.com/ > > > <http://wso2.com/signature> > > -- *Thanuja Lakmal* Associate Technical Lead WSO2 Inc. http://wso2.com/ *lean.enterprise.middleware* Mobile: +94715979891
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
