Hello,
I am evalueting Syncope as a possible IDM-system for integrating in a new
product.
One of the requirements is to have an administrator role allowing to perform
all actions with all realms, users, groups, roles and able to view access
tokens.
I have configured a role as following:
"entitlements":[
"ACCESS_TOKEN_LIST",
"ANYTYPE_LIST",
"ANYTYPE_READ",
"ANYTYPECLASS_LIST",
"ANYTYPECLASS_READ",
"DOMAIN_READ",
"GROUP_DELETE",
"GROUP_UPDATE",
"GROUP_CREATE",
"GROUP_LIST",
"GROUP_READ",
"GROUP_SEARCH",
"MEMBERSHIP_DELETE",
"MEMBERSHIP_UPDATE",
"MEMBERSHIP_CREATE",
"MEMBERSHIP_LIST",
"MEMBERSHIP_READ",
"POLICY_READ",
"REALM_LIST",
"REALM_CREATE",
"REALM_DELETE",
"REALM_UPDATE",
"RELATIONSHIPTYPE_LIST",
"RELATIONSHIPTYPE_READ",
"RESOURCE_LIST",
"RESOURCE_READ",
"ROLE_DELETE",
"ROLE_UPDATE",
"ROLE_CREATE",
"ROLE_LIST",
"ROLE_READ",
"USER_SEARCH",
"USER_DELETE",
"USER_CREATE",
"USER_UPDATE",
"USER_READ" ],
"realms":["/"],
It seems I am still missing some entitlements, because the user needs to
login again as soon as he hits
- the "Realms" item on the left
- the "Details" tab after hitting "Dashboard" - "Users" (see the
attachment)
- one of the leaves of the realm tree in the right corner after
hitting "Dashboard" - "Users".
Thank you and regards,
Maria Barth
Unsere neusten Aktionen rund um unsere Produkte finden Sie unter:
http://www.cad-schroer.de/emailaction/
------------------------------------------------------------------------------
CAD Schroer GmbH, Fritz-Peters-Strasse 11, D - 47447 Moers
Geschaeftsfuehrer: Michael Schroer, Thomas Schubert. Amtsgericht Kleve HRB 5339
Tel.: +49 2841-9184-0 Fax: +49 2841-9184-44
------------------------------------------------------------------------------
Website: http://www.cad-schroer.de
