diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-affiliation.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-affiliation.xml
new file mode 100644
index 0000000..b0b9400
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-affiliation.xml
@@ -0,0 +1,52 @@
+
+ affiliation
+
+ ref:affiliation:
+ ou=Affiliations,ou=Groups,dc=internet2,dc=edu
+ affiliation_
+ Affiliation:
+
+
+
+
+ Affiliations
+
+ fa fa-superpowers
+ steelblue
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 2
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-course.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-course.xml
new file mode 100644
index 0000000..0543f0a
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-course.xml
@@ -0,0 +1,63 @@
+
+ course
+
+ ref:course:
+ ou=Courses,ou=Groups,dc=internet2,dc=edu
+ course_
+ Course:
+
+
+
+
+ Courses
+
+ fa fa-university
+ teal
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ ri:courses
+
+ strong
+
+
+
+
+
+
+ 2
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-department.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-department.xml
new file mode 100644
index 0000000..26691be
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-department.xml
@@ -0,0 +1,53 @@
+
+ department
+
+ ref:dept:
+ department_
+ Department:
+
+
+
+
+ Departments
+
+ fa fa-building
+ darkgreen
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ [ri:businessCategory]
+
+ strong
+
+
+
+
+
+
+ 2
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-external-person.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-external-person.xml
new file mode 100644
index 0000000..c249f6b
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-external-person.xml
@@ -0,0 +1,25 @@
+
+
+ External
+ Non-academic person with no relation to the academy environment
+
+
+
+ Externals
+ Person imported from the external database
+
+ fa fa-space-shuttle
+ olive
+
+
+
+
+
+ UserType
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-generic-grouper-group.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-generic-grouper-group.xml
new file mode 100644
index 0000000..62f73eb
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-generic-grouper-group.xml
@@ -0,0 +1,40 @@
+
+ generic-grouper-group
+
+
+ ou=generic,ou=Groups,dc=internet2,dc=edu
+ generic_
+
+
+
+
+
+ Generic Grouper Groups
+
+ fa fa-users
+ lightcoral
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-mailing-list.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-mailing-list.xml
new file mode 100644
index 0000000..2db1df4
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-mailing-list.xml
@@ -0,0 +1,56 @@
+
+ mailing-list
+
+ app:mailinglist:
+ ou=generic,ou=Groups,dc=internet2,dc=edu
+ mailinglist_
+ Mailing list:
+
+
+
+
+ Mailing lists
+
+ fa fa-list
+ darkgoldenrod
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ ri:lists
+
+ strong
+
+
+
+
+
+
+ 2
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-midpoint-group.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-midpoint-group.xml
new file mode 100644
index 0000000..e3bc872
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-midpoint-group.xml
@@ -0,0 +1,32 @@
+
+ midpoint-group
+
+ ou=midpoint,ou=Groups,dc=internet2,dc=edu
+
+
+
+
+ midPoint Groups
+
+ fa fa-users
+ darkgviolet
+
+
+
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-sis-person.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-sis-person.xml
new file mode 100644
index 0000000..b4c8a42
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/archetypes/archetype-sis-person.xml
@@ -0,0 +1,25 @@
+
+
+ SIS Person
+ Person with a relation to the academy environment, coming from the SIS database
+
+
+
+ SIS Persons
+ Person imported from the SIS database
+
+ fa fa-graduation-cap
+ darkgreen
+
+
+
+
+
+ UserType
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/990-test-all-resources.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/990-test-all-resources.xml
new file mode 100644
index 0000000..5b22670
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/990-test-all-resources.xml
@@ -0,0 +1,21 @@
+
+
+
+ c:ResourceType
+
+
+ 0a37121f-d515-4a23-9b6d-554c5ef61272
+ 4d70a0da-02dd-41cf-b0a1-00e75d3eaa15
+ a343fc2e-3954-4034-ba1a-2b72c21e577a
+ e417225d-8a08-46f3-9b5d-624990b52386
+ fe805d13-481b-43ec-97d8-9d2df72cd38e
+ 1eff65de-5bb6-483d-9edf-8cc2c2ee0233
+
+
+
+
+ test-resource
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/991-recompute-grouper.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/991-recompute-grouper.xml
new file mode 100644
index 0000000..4be7285
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/bulkActions/991-recompute-grouper.xml
@@ -0,0 +1,17 @@
+
+
+
+
+ ObjectType
+
+
+ d48ec05b-fffd-4262-acd3-d9ff63365b62
+ e897468f-20bd-419c-8fc5-1fe60e2600de
+
+
+
+ recompute
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/functionLibraries/function-library-grouper.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/functionLibraries/function-library-grouper.xml
new file mode 100644
index 0000000..9ebd543
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/functionLibraries/function-library-grouper.xml
@@ -0,0 +1,180 @@
+
+
+
+ grouper
+ Functions for Grouper AMQP connector
+
+
+
+
+
+ createUcfChange
+
+ message
+ c:AsyncUpdateMessageType
+
+
+ groupIncludePattern
+ xsd:anyType
+
+
+ groupExcludePattern
+ xsd:anyType
+
+
+ relevantSourceId
+ xsd:string
+
+
+ c:UcfChangeType
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/objectTemplates/template-user.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/objectTemplates/template-user.xml
new file mode 100644
index 0000000..8d8c362
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/objectTemplates/template-user.xml
@@ -0,0 +1,92 @@
+
+
+
+
+ template-user
+
+ strong
+
+ name
+
+
+
+
+
+ assignment
+
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-affiliations.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-affiliations.xml
new file mode 100644
index 0000000..577c894
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-affiliations.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ affiliations
+ Affiliations
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-courses.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-courses.xml
new file mode 100644
index 0000000..47147d5
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-courses.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ courses
+ Courses
+
\ No newline at end of file
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-departments.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-departments.xml
new file mode 100644
index 0000000..b5638d4
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-departments.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ departments
+ Departments
+
\ No newline at end of file
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-generic-groups.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-generic-groups.xml
new file mode 100644
index 0000000..baa2c79
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-generic-groups.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ generic-groups
+ Generic groups
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-grouper-sysadmin.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-grouper-sysadmin.xml
new file mode 100644
index 0000000..201777a
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-grouper-sysadmin.xml
@@ -0,0 +1,16 @@
+
+
+
+ org-grouper-sysadmin
+ Grouper Administrators
+
+
+
+ sysadmingroup
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-mailing-lists.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-mailing-lists.xml
new file mode 100644
index 0000000..6674745
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-mailing-lists.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ mailing-lists
+ Mailing lists
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-midpoint-groups.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-midpoint-groups.xml
new file mode 100644
index 0000000..9c0658d
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/orgs/org-midpoint-groups.xml
@@ -0,0 +1,13 @@
+
+
+
+
+ midpoint-groups
+ midPoint groups
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/ldap-main.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/ldap-main.xml
new file mode 100644
index 0000000..b49ed25
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/ldap-main.xml
@@ -0,0 +1,341 @@
+
+
+
+
+
+ LDAP (directory)
+
+
+
+
+ c:connectorType
+ com.evolveum.polygon.connector.ldap.LdapConnector
+
+
+
+
+
+
+ 389
+ directory
+
+ dc=internet2,dc=edu
+ cn=Directory Manager
+
+ password
+
+ nsUniqueId
+ spr
+
+ memberOf
+ createTimestamp
+ nsAccountLock
+
+
+
+
+ false
+ false
+ false
+
+
+
+
+
+ ri:inetOrgPerson
+ ri:eduPerson
+ ri:groupOfUniqueNames
+ ri:groupOfNames
+ ri:organizationalUnit
+
+
+
+
+
+ account
+ Normal Account
+ true
+ ri:inetOrgPerson
+ ri:eduPerson
+
+ [ri:dn]
+ Distinguished Name
+
+ 0
+
+ false
+ mr:distinguishedName
+
+ strong
+
+ name
+
+
+
+
+
+
+
+ [ri:cn]
+ Common Name
+
+ 0
+
+ false
+
+ strong
+
+ fullName
+
+
+
+
+ [ri:sn]
+ Surname
+
+ 0
+
+ false
+
+ strong
+
+ familyName
+
+
+
+
+ [ri:givenName]
+ Given Name
+
+ 0
+
+ false
+
+ strong
+
+ givenName
+
+
+
+
+ [ri:uid]
+ Login Name
+ false
+ mr:stringIgnoreCase
+
+ strong
+
+ name
+
+
+
+
+ [ri:mail]
+ Mail
+ mr:stringIgnoreCase
+ false
+
+ strong
+
+ emailAddress
+
+
+
+
+ [ri:employeeNumber]
+ false
+
+ strong
+
+ employeeNumber
+
+
+
+
+ [ri:businessCategory]
+ false
+
+
+
+ false
+ [ri:group]
+ entitlement
+ group
+ objectToSubject
+ ri:uniqueMember
+ ri:dn
+
+
+
+
+ http://prism.evolveum.com/xml/ns/public/matching-rule-3#distinguishedName
+ attributes/ri:dn
+ cn=root,dc=internet2,dc=edu
+
+
+
+
+
+
+
+
+
+
+
+ entitlement
+ group
+ LDAP Group
+ ri:groupOfUniqueNames
+
+ [ri:uniqueMember]
+ mr:distinguishedName
+ minimal
+
+
+ [ri:dn]
+ mr:distinguishedName
+
+ strong
+
+ extension/ldapDn
+
+
+
+
+ [ri:cn]
+ mr:stringIgnoreCase
+
+ weak
+
+ identifier
+
+
+
+
+ [ri:uniqueMember]
+ mr:distinguishedName
+ minimal
+
+
+
+
+
+
+ true
+
+
+ name
+
+
+ declare namespace ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3";
+ $projection/attributes/ri:uid
+
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+
+
+ group sync
+ ri:groupOfUniqueNames
+ entitlement
+ group
+ OrgType
+ true
+
+
+
+
+
+ extension/ldapDn
+
+ $projection/attributes/ri:dn
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+
+
+
+ true
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/resource-grouper.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/resource-grouper.xml
new file mode 100644
index 0000000..abfe97d
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/resource-grouper.xml
@@ -0,0 +1,184 @@
+
+
+
+
+
+ Grouper Resource
+
+
+
+ connectorType
+ com.evolveum.polygon.connector.grouper.rest.GrouperConnector
+
+
+
+
+
+ https://grouper-ws:443
+ banderson
+ password
+ etc:sysadmingroup
+ app:.*
+ test:.*
+ ref:.*
+ .*_(includes|excludes|systemOfRecord|systemOfRecordAndIncludes)
+ ldap
+ g:gsa
+ true
+ :
+
+
+
+ AMQP async update connector
+
+
+
+ connectorType
+ AsyncUpdateConnector
+
+
+
+
+
+
+ amqp://mq:5672
+ guest
+ guest
+ sampleQueue
+
+
+
+
+
+
+
+
+
+ entitlement
+ group
+ ri:CustomPlainGroupObjectClass
+ true
+
+ [icfs:name]
+
+ strong
+
+ extension/grouperName
+
+
+
+ strong
+
+
+
+
+ assignment
+
+ all
+
+
+
+
+
+ [ri:member]
+ explicit
+ indexOnly
+
+
+
+
+
+ true
+ entitlement
+ group
+ ri:CustomPlainGroupObjectClass
+ OrgType
+
+
+ extension/grouperName
+
+ $projection/attributes/name
+
+
+
+
+ linked
+ http://midpoint.evolveum.com/xml/ns/public/provisioning/channels-3#asyncUpdate
+ false
+
+
+ linked
+ true
+
+
+ deleted
+
+
+ true
+
+
+ unlinked
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus
+
+
+
+
+
+ passive
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/scriptedsql-sis-persons.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/scriptedsql-sis-persons.xml
new file mode 100644
index 0000000..0ca8cb0
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/scriptedsql-sis-persons.xml
@@ -0,0 +1,221 @@
+
+
+
+
+
+
+ SQL SIS persons (sources)
+
+
+
+
+ connectorType
+ net.tirasa.connid.bundles.db.scriptedsql.ScriptedSQLConnector
+
+
+
+
+
+
+
+ sources
+ 3306
+
+ root
+
+ 123321
+
+ sis
+
+ GROOVY
+
+ /opt/midpoint/var/res/sis-persons/SearchScript.groovy
+ /opt/midpoint/var/res/sis-persons/TestScript.groovy
+ /opt/midpoint/var/res/sis-persons/SchemaScript.groovy
+
+ false
+
+
+
+
+
+ org.mariadb.jdbc.Driver
+ jdbc:mysql://%h:%p/%d?useUnicode=true&characterEncoding=utf8&connectionCollation=utf8_bin
+ true
+ true
+ false
+ false
+
+
+
+
+
+
+
+
+
+
+ account
+ Normal Account
+ true
+ ri:AccountObjectClass
+
+ [ri:uid]
+ UID
+
+
+ name
+
+
+
+ strong
+
+
+ RoleType
+ c89f31dd-8d4f-4e0a-82cb-58ff9d8c1b2f
+
+ grouper-basic
+
+
+
+
+ assignment
+
+
+
+
+
+
+
+
+ strong
+
+
+ ArchetypeType
+ 958da09c-fefb-11e9-892d-975972472527
+
+ grouper-basic
+
+
+
+
+ assignment
+
+
+
+
+
+
+
+
+
+ [ri:fullName]
+ Full Name
+
+
+ fullName
+
+
+
+
+ [ri:surname]
+ Surname
+
+
+ familyName
+
+
+
+
+ [ri:givenName]
+ Given Name
+
+
+ givenName
+
+
+
+
+ [ri:mail]
+ Mail
+ mr:stringIgnoreCase
+
+
+ emailAddress
+
+
+
+
+
+
+
+
+ true
+
+
+
+ name
+
+
+ declare namespace ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3";
+ $projection/attributes/ri:uid
+
+
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#addFocus
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-cs-portal.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-cs-portal.xml
new file mode 100644
index 0000000..e308eb1
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-cs-portal.xml
@@ -0,0 +1,112 @@
+
+
+
+
+ Target: Computer science portal (CSV)
+
+
+
+
+ c:connectorType
+ com.evolveum.polygon.connector.csv.CsvConnector
+
+
+
+
+
+
+
+ /opt/midpoint/var/cs-portal.csv
+ utf-8
+ ,
+ ;
+ identifier
+
+
+
+
+
+
+ Default Account
+ true
+ ri:AccountObjectClass
+
+ [ri:identifier]
+
+ strong
+
+ name
+
+
+
+
+ [ri:name]
+
+ strong
+
+ fullName
+
+
+
+
+ [ri:mail]
+
+ strong
+
+ emailAddress
+
+
+
+
+ [ri:courses]
+
+ unbounded
+
+ false
+
+
+
+
+
+
+ true
+
+
+ name
+
+ $projection/attributes/identifier
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-faculty-portal.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-faculty-portal.xml
new file mode 100644
index 0000000..404880c
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-faculty-portal.xml
@@ -0,0 +1,128 @@
+
+
+
+
+ Target: Faculty portal (CSV)
+
+
+
+
+ c:connectorType
+ com.evolveum.polygon.connector.csv.CsvConnector
+
+
+
+
+
+
+
+ /opt/midpoint/var/faculty-portal.csv
+ utf-8
+ ,
+ ;
+ uid
+
+
+
+
+
+ Default Account
+ true
+ ri:AccountObjectClass
+
+ [ri:uid]
+
+ strong
+
+ name
+
+
+
+
+ [ri:givenName]
+
+ strong
+
+ givenName
+
+
+
+
+ [ri:familyName]
+
+ strong
+
+ familyName
+
+
+
+
+ [ri:fullName]
+
+ strong
+
+ fullName
+
+
+
+
+ [ri:mail]
+
+ strong
+
+ emailAddress
+
+
+
+
+
+
+
+ true
+
+
+ name
+
+ $projection/attributes/uid
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+
+
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-mailing-lists.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-mailing-lists.xml
new file mode 100644
index 0000000..1f69417
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/resources/target-mailing-lists.xml
@@ -0,0 +1,102 @@
+
+
+
+
+ Target: Mailing lists (CSV)
+
+
+
+
+ c:connectorType
+ com.evolveum.polygon.connector.csv.CsvConnector
+
+
+
+
+
+
+
+ /opt/midpoint/var/mailing-lists.csv
+ utf-8
+ ,
+ ;
+ uid
+
+
+
+
+
+ Default Account
+ true
+ ri:AccountObjectClass
+
+ [ri:uid]
+
+ strong
+
+ name
+
+
+
+
+ [ri:mail]
+
+ strong
+
+ emailAddress
+
+
+
+
+ [ri:lists]
+
+ unbounded
+
+ false
+
+
+
+
+
+
+ true
+
+
+ name
+
+ $projection/attributes/uid
+
+
+
+
+ linked
+ true
+
+
+ deleted
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink
+
+
+
+ unlinked
+ true
+
+ http://midpoint.evolveum.com/xml/ns/public/model/action-3#link
+
+
+
+ unmatched
+
+
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-grouper-provided-group.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-grouper-provided-group.xml
new file mode 100644
index 0000000..1274be7
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-grouper-provided-group.xml
@@ -0,0 +1,192 @@
+
+
+
+ metarole-grouper-provided-group
+ A metarole for archetyped Grouper-provided groups
+
+
+
+
+ identifier
+ This mapping fills-in org identifier (e.g. 'member') from extension/grouperName (e.g. 'ref:affiliation:member').
+ It uses extension/grouperNamePrefix information from the archetype (e.g. 'ref:affiliation:' defined in affiliation archetype)
+ strong
+
+ extension/grouperName
+
+
+
+
+
+ identifier
+
+
+
+
+ name
+ This mapping fills-in org name (e.g. 'affiliation_member') from identifier (e.g. 'member').
+ It uses extension/midPointNamePrefix information from the archetype (e.g. 'affiliation_' defined in affiliation archetype)
+ strong
+
+ identifier
+
+
+
+
+
+ name
+
+
+
+
+ displayName
+ This mapping fills-in org displayName (e.g. 'Affiliation: member') from identifier (e.g. 'member').
+ It uses extension/midPointDisplayNamePrefix information from the archetype (e.g. 'Affiliation: ' defined in affiliation archetype)
+ strong
+
+ identifier
+
+
+
+
+
+ displayName
+
+
+
+
+ lifecycle state
+ This mapping sets org lifecycle state to be either "active" or "retired", depending on
+ whether Grouper group for this org still exists. Orgs in the latter state are on the way to deletion:
+ their members are unassigned and after no members are there, the org is automatically deleted.
+ strong
+
+
+
+
+ lifecycleState
+
+
+
+
+
+ 2
+
+
\ No newline at end of file
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-ldap-group.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-ldap-group.xml
new file mode 100644
index 0000000..91bf370
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/metarole-ldap-group.xml
@@ -0,0 +1,128 @@
+
+
+
+ metarole-ldap-group
+ A metarole for archetyped LDAP groups
+
+
+
+
+
+
+ ldapDn
+ strong
+
+ identifier
+
+
+
+
+
+ extension/ldapDn
+
+
+
+ 2
+
+
+
+
+
+
+ entitlement
+ group
+
+ 2
+
+
+
+
+
+
+
+ ri:group
+
+
+
+
+ entitlement
+ group
+
+ 1
+
+
+
+
+
+ 3
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/role-ldap-basic.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/role-ldap-basic.xml
new file mode 100644
index 0000000..731f024
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/roles/role-ldap-basic.xml
@@ -0,0 +1,25 @@
+
+
+
+ role-ldap-basic
+
+
+
+
+ 1
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/systemConfigurations/SystemConfiguration.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/systemConfigurations/SystemConfiguration.xml
new file mode 100644
index 0000000..9970677
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/systemConfigurations/SystemConfiguration.xml
@@ -0,0 +1,257 @@
+
+
+
+ SystemConfiguration
+
+
+
+ ERROR
+ ro.isdc.wro.extensions.processor.css.Less4jProcessor
+
+
+ OFF
+ org.hibernate.engine.jdbc.spi.SqlExceptionHelper
+
+
+ OFF
+ org.hibernate.engine.jdbc.batch.internal.BatchingBatch
+
+
+ WARN
+ org.hibernate.engine.jdbc.batch.internal.AbstractBatchImpl
+
+
+ OFF
+ org.hibernate.internal.ExceptionMapperStandardImpl
+
+
+ OFF
+ net.sf.jasperreports.engine.fill.JRFillDataset
+
+
+ WARN
+ org.apache.wicket.resource.PropertiesFactory
+
+
+ ERROR
+ org.springframework.context.support.ResourceBundleMessageSource
+
+
+ INFO
+ com.evolveum.midpoint.model.impl.lens.projector.Projector
+
+
+ INFO
+ com.evolveum.midpoint.model.impl.lens.Clockwork
+
+
+ %date [%X{subsystem}] [%thread] %level \(%logger\): %msg%n
+ MIDPOINT_LOG
+ ${midpoint.home}/log/midpoint.log
+ ${midpoint.home}/log/midpoint-%d{yyyy-MM-dd}.%i.log
+ 10
+ 100MB
+ true
+
+
+ %date %level: %msg%n
+ MIDPOINT_PROFILE_LOG
+ ${midpoint.home}/log/midpoint-profile.log
+ ${midpoint.home}/log/midpoint-profile-%d{yyyy-MM-dd}.%i.log
+ 10
+ 100MB
+ true
+
+ MIDPOINT_LOG
+ INFO
+
+ false
+ false
+
+
+
+ UserType
+
+
+
+ OrgType
+
+
+ retired
+
+
+
+
+
+
+ P3M
+
+
+ P1M
+
+
+
+ true
+
+ true
+
+
+ true
+ true
+
+
+ true
+ true
+
+
+ true
+
+
+
+ true
+
+
+ perCacheAndObjectType
+
+
+
+ 60
+
+ SystemConfigurationType
+ ArchetypeType
+ ObjectTemplateType
+ SecurityPolicyType
+ ValuePolicyType
+ ResourceType
+ RoleType
+ OrgType
+ ServiceType
+ ShadowType
+
+
+ perCacheAndObjectType
+
+
+
+
+
+
+ perOperationAndObjectType
+
+
+
+
+ performance
+ Performance tracing
+ true
+ true
+ performance-trace %{timestamp} %{focusName} %{milliseconds}
+ true
+ true
+
+
+ functional
+ Functional tracing
+ true
+ functional-trace %{timestamp} %{focusName}
+ true
+ true
+ true
+
+ normal
+
+
+
+ functional-model-logging
+ Functional tracing (with model logging)
+ true
+ functional-trace %{timestamp} %{focusName}
+ true
+ true
+ true
+
+
+ com.evolveum.midpoint.model
+ TRACE
+
+
+
+ normal
+
+
+
+ functional-sql-logging
+ Functional tracing (with SQL logging)
+ true
+ functional-trace %{timestamp} %{focusName}
+ true
+ true
+ true
+
+
+ org.hibernate.SQL
+ TRACE
+
+
+
+ normal
+
+
+
+
+
+ demo/grouper
+
+
+
+ /self/profile
+
+ View/edit your profile
+
+ fa fa-user
+
+ green
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#selfProfile
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#selfAll
+
+
+ /self/credentials
+
+ View/edit your credentials
+
+ fa fa-shield
+
+ blue
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#selfCredentials
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#selfAll
+
+
+ /admin/users
+
+
+ fa fa-users
+
+ red
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#users
+
+
+ /admin/resources
+
+
+ fa fa-database
+
+ purple
+ http://midpoint.evolveum.com/xml/ns/public/security/authorization-ui-3#resources
+
+ true
+
+
+ never
+ never
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/tasks/995-task-group-scavenger.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/tasks/995-task-group-scavenger.xml
new file mode 100644
index 0000000..60f9852
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/tasks/995-task-group-scavenger.xml
@@ -0,0 +1,85 @@
+
+
+
+
+
+
+ Group Scavenger
+
+
+
+ execute-script
+
+ script
+
+ import com.evolveum.midpoint.xml.ns._public.common.common_3.*
+
+ result = midpoint.currentResult
+ log.info('Processing dead group: {}', input)
+ query = prismContext.queryFor(UserType.class)
+ .item(UserType.F_ROLE_MEMBERSHIP_REF).ref(input.oid)
+ .build()
+ members = midpoint.repositoryService.searchObjects(UserType.class, query, null, result)
+ log.info('Found {} members: {}', members.size(), members)
+
+ for (member in members) {
+ log.info('Going to recompute {}', member)
+ try {
+ midpoint.recompute(UserType.class, member.oid)
+ } catch (Throwable t) {
+ log.error('Couldn\'t recompute {}: {}', member, t.message, t)
+ }
+ }
+ log.info('Members recomputed; checking if the org is still in "retired" state')
+ orgAfter = midpoint.repositoryService.getObject(OrgType.class, input.oid, null, result)
+ currentState = orgAfter.asObjectable().lifecycleState
+ log.info('Current state = {}', currentState)
+ if (currentState == 'retired') {
+ log.info('Deleting the org: {}', orgAfter)
+ midpoint.deleteObject(OrgType.class, orgAfter.oid, null)
+ } else {
+ log.info('State has changed, not deleting the org: {}', orgAfter)
+ }
+ log.info('Dead group processing done: {}', input)
+
+
+
+
+
+ OrgType
+
+
+
+ lifecycleState
+ retired
+
+
+
+
+
+ runnable
+ BulkActions
+ http://midpoint.evolveum.com/xml/ns/public/model/iterative-scripting/handler-3
+ recurring
+
+ 60
+
+
diff --git a/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/users/user-banderson.xml b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/users/user-banderson.xml
new file mode 100644
index 0000000..10197ea
--- /dev/null
+++ b/demo/grouper/midpoint_server/container_files/mp-home/post-initial-objects/users/user-banderson.xml
@@ -0,0 +1,27 @@
+
+
+
+ banderson
+
+
+
+
+
+ Bob Anderson
+ Bob
+ Anderson
+
+
+ password
+
+
+
+