Re: Syncope Console realms listing

[Andrea Patricelli]

Hi Maria,

Could you please specify which version of Syncope are you using?
The current implementation of the console shows all other realms, but 
disables the ones on which the admin user does not have permission (you 
should see a "not allowed" icon on realms different than "Firma1").
in order to hide not allowed realms you should make a customization to 
the current console implementation.

HTH,
Andrea

Il 10/09/2018 10:23, Maria Barth ha scritto:

Hello,

my requirement is to have a user in Syncope, who is able to 
administrate other users in the same realm, but who may not see the 
list of other realms.

Is it possible?

I have configured a role, with following entitlements on the realm:

"entitlements":[

                "ACCESS_TOKEN_LIST",

                "ANYTYPE_LIST",

                "ANYTYPE_READ",

"ANYTYPECLASS_LIST",

                 "ANYTYPECLASS_READ",

                "DOMAIN_READ",

                 "GROUP_DELETE",

                 "GROUP_UPDATE",

                 "GROUP_CREATE",

                 "GROUP_LIST",

                 "GROUP_READ",

                 "GROUP_SEARCH",

                 "MEMBERSHIP_DELETE",

                 "MEMBERSHIP_UPDATE",

                 "MEMBERSHIP_CREATE",

                 "MEMBERSHIP_LIST",

                 "MEMBERSHIP_READ",

                "REALM_LIST",

                "RELATIONSHIPTYPE_LIST",

                "RELATIONSHIPTYPE_READ",

                "ROLE_DELETE",

                 "ROLE_UPDATE",

                 "ROLE_CREATE",

                  "ROLE_LIST",

                  "ROLE_READ",

                  "SCHEMA_LIST",

                  "USER_SEARCH",

            "USER_DELETE",

            "USER_CREATE",

            "USER_UPDATE",

            "USER_READ"],

  "realms":["/Firma1"],

But if the user having this role and being defined on the realm 
„/Firma1“ enters the „Realms“ in the console, he is able to see the 
list of all realms:

Thank you for your help and regards,

Maria Barth


Unsere neusten Aktionen rund um unsere Produkte finden Sie unter: News 
& Events <http://www.cad-schroer.ch/emailaction/>



*CAD Schroer GmbH*              *Geschaeftsfuehrer:*            *Tel.:* +49 
2841-9184-0
Fritz-Peters-Strasse 11                 Michael Schroer                 *Fax: 
*+49 2841-9184-44
47447 Moers             Thomas Schubert                 *E-Mail:* 
i...@cad-schroer.de
Deutschland 		Amtsgericht Kleve HRB 5339 		*Web:* www.cad-schroer.de 
<../dereferrer?redirectUrl=http%3A%2F%2Fwww.cad-schroer.de>

--
Dott. Andrea Patricelli
Tel. +39 3204524292

Developer @ Tirasa S.r.l.
Viale D'Annunzio 267 - 65127 Pescara
Tel +39 0859116307 / FAX +39 0859111173
http://www.tirasa.net

Apache Syncope PMC Member