On Mar 30, 2012 5:17 PM, "Fabio Martelli" <[email protected]> wrote:
> > I think your design is correct. > Syncope roles could be used to simulate a generic organisational structure like yours. Ok good to know I'm on the right track. > > I could use the syncope entitlements so that the admin role in orgA > > can only create users in the orgA/users/user role and assign > > application roles. > > This should be possible by default: > 1. create entitlement called ROLE_<id of the role orgA/users/user> > 2. add entitlement to the role orgA/users/admin I assume that first this needs to be fixed: https://issues.apache.org/jira/browse/SYNCOPE-48 Regards Bob
