From d18e26d44ac55cf8d3126e8d812e6057651e526a Mon Sep 17 00:00:00 2001 From: root Date: Thu, 6 Oct 2022 12:39:39 +0000 Subject: [PATCH] add midPoint midScribe doc --- Workbench/webproxy/Dockerfile | 1 + .../webproxy/container_files/httpd/index.html | 1 + .../container_files/httpd/midPoint-doc.html | 5981 +++++++++++++++++ 3 files changed, 5983 insertions(+) create mode 100644 Workbench/webproxy/container_files/httpd/midPoint-doc.html diff --git a/Workbench/webproxy/Dockerfile b/Workbench/webproxy/Dockerfile index 0552213..2fdbc35 100644 --- a/Workbench/webproxy/Dockerfile +++ b/Workbench/webproxy/Dockerfile @@ -14,6 +14,7 @@ COPY container_files/httpd/proxy.conf /etc/httpd/conf.d/ COPY container_files/httpd/shib.conf /etc/httpd/conf.d/ COPY container_files/httpd/ssl.conf /etc/httpd/conf.d/ COPY container_files/httpd/index.html /var/www/html/ +COPY container_files/httpd/midPoint-doc.html /var/www/html/ COPY container_files/httpd/csp_logo.jpg /var/www/html/ COPY container_files/httpd/server-chain.crt /etc/pki/tls/certs/server-chain.crt COPY container_files/httpd/.htpasswd /etc/httpd/ diff --git a/Workbench/webproxy/container_files/httpd/index.html b/Workbench/webproxy/container_files/httpd/index.html index 0930295..f0bdd5e 100644 --- a/Workbench/webproxy/container_files/httpd/index.html +++ b/Workbench/webproxy/container_files/httpd/index.html @@ -11,6 +11,7 @@

Welcome to the InCommon TAP Workbench!

diff --git a/Workbench/webproxy/container_files/httpd/midPoint-doc.html b/Workbench/webproxy/container_files/httpd/midPoint-doc.html new file mode 100644 index 0000000..8763f01 --- /dev/null +++ b/Workbench/webproxy/container_files/httpd/midPoint-doc.html @@ -0,0 +1,5981 @@ + + + + + + + + +MidPoint Project Documentation + + + + + + + + + + + + + +
+
+
+
+

This is the optional preamble (an untitled section body).Useful for writing simple sectionless documents consisting only of a preamble.

+
+
+
+
+

1. Object Templates

+
+ +++++ + + + + + + + + + + + + + + +
NameDescriptionOid

User Template

8098b124-c20c-4965-8adf-e528abedf7a4

+
+

1.1. User Template

+
+

1.1.1. Iterator Specification

+
+

Max. iterations: 99

+
+
Token Expression
+
+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
if (iteration == 0) {
+    return "";
+} else {
+    return "_"+iteration;
+}
+
+
+
Post Iteration Condition
+
+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
import com.evolveum.midpoint.xml.ns._public.common.common_3.*
+            import com.evolveum.midpoint.schema.constants.*
+            import com.evolveum.midpoint.schema.*
+            import javax.xml.namespace.*
+            import com.evolveum.midpoint.util.*
+            import com.evolveum.midpoint.prism.path.*
+ort com.evolveum.midpoint.prism.polystring.*
+ort com.evolveum.midpoint.prism.PrismContainer.*
+
+ nameunique = false
+ uidunique = false
+(givenName == null || familyName == null) {
+turn true;
+lse {
+f testname = basic.norm(basic.stringify(givenName))?.tr(' ', '_') + '_' + basic.norm(basic.stringify(familyName))?.tr(' ', '_') + "" + iterationToken;
+log.info('post-iterate for name for {}', testname.toString());
+nameunique = midpoint.isUniquePropertyValue(focus, 'name', PolyString.fromOrig(testname.toString()));
+meunique = midpoint.isUniquePropertyValue(focus, 'name', PolyString.fromOrig(testname.toString()));
+midpoint.isUniquePropertyValue(focus, 'name', PolyString.fromOrig(testname.toString()));
+
+f testuid = basic.norm(basic.stringify(givenName))?.tr(' ', '_').substring(0,1) + basic.norm(basic.stringify(familyName))?.tr(' ', '_') + "" + iterationToken;
+log.info('post-iterate for uid for {}', testname.toString());
+uidunique = midpoint.isUniquePropertyValue(focus, 'UserID', PolyString.fromOrig(testuid.toString()));
+dunique = midpoint.isUniquePropertyValue(focus, 'employeeNumber', testuid.toString());
+
+
+urn (nameunique && uidunique)
+
+
+
+
+

1.1.2. Items

+
name
+
employeeNumber
+
+
+

1.1.3. Mappings

+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

employeeNumber

+

Target

+

assignment

+
+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
import com.evolveum.midpoint.xml.ns._public.common.common_3.*
+import com.evolveum.midpoint.schema.constants.*
+import com.evolveum.midpoint.schema.*
+import javax.xml.namespace.*
+import com.evolveum.midpoint.util.*
+import com.evolveum.midpoint.prism.path.*
+
+GROUPER_RESOURCE_OID = '1eff65de-5bb6-483d-9edf-8cc2c2ee0233'
+MEMBER_NAME = new QName(MidPointConstants.NS_RI, 'member')
+
+memberDef = prismContext.definitionFactory().createPropertyDefinition(MEMBER_NAME, DOMUtil.XSD_STRING)
+memberDef.setMaxOccurs(-1)
+
+shadowQuery = prismContext.queryFor(ShadowType.class)
+    .item(ShadowType.F_RESOURCE_REF).ref(GROUPER_RESOURCE_OID)
+    .and().item(ShadowType.F_SYNCHRONIZATION_SITUATION).eq(SynchronizationSituationType.LINKED)
+    .and().item(ShadowType.F_KIND).eq(ShadowKindType.ENTITLEMENT)
+    .and().item(ShadowType.F_INTENT).eq('group')
+    .and().block().item(ShadowType.F_DEAD).isNull().or().item(ShadowType.F_DEAD).eq(false).endBlock()
+    .and().item(ItemPath.create(ShadowType.F_ATTRIBUTES, MEMBER_NAME), memberDef).eq(basic.stringify(employeeNumber))
+    .build()
+
+options = SelectorOptions.createCollection(GetOperationOptions.createNoFetch())
+shadows = midpoint.searchObjects(ShadowType.class, shadowQuery, options)
+
+orgNames = shadows.collect { basic.stringify(it.name) }            // todo - use attributes
+log.info('org names = {}', orgNames)
+
+if (!orgNames.isEmpty()) {
+    orgQueryBuilder = prismContext.queryFor(OrgType.class)
+
+    first = true
+    for (orgName in orgNames) {
+        if (first) {
+            first = false
+        } else {
+            orgQueryBuilder = orgQueryBuilder.or()
+        }
+        orgQueryBuilder = orgQueryBuilder.item(ItemPath.create(OrgType.F_EXTENSION, 'grouperName')).eq(orgName)
+    }
+
+    orgQuery = orgQueryBuilder.build()
+    //log.info('org query:\n', orgQuery.debugDump())
+
+    orgs = midpoint.searchObjects(OrgType.class, orgQuery, null)
+    log.info('orgs found: {}', orgs)
+
+    orgs.collect {
+        new AssignmentType(prismContext)
+            .subtype('grouper-group')
+            .targetRef(it.oid, OrgType.COMPLEX_TYPE)
+    }
+} else {
+    null
+}
+
+
+
+
+
+
+
+

2. Resources

+
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
NameDescriptionOid

Source: Groups

Groups from Grouper

1eff65de-5bb6-483d-9edf-8cc2c2ee0233

Source: Guest DB

Guests from COmanage via SQL

edb9e47b-e8ad-48b7-9127-ae7b8911a8f2

Source: HR System

Staff from HR via CSV

10000000-9999-9999-0000-a000ff000001

Source: SIS DB

Students/Faculty from SIS via SQL

4d70a0da-02dd-41cf-b0a1-00e75d3eaa15

Target: Computer science portal (CSV)

a343fc2e-3954-4034-ba1a-2b72c21e577a

Target: Faculty portal (CSV)

e417225d-8a08-46f3-9b5d-624990b52386

Target: LDAP directory

Main LDAP directory

0a37121f-d515-4a23-9b6d-554c5ef61272

Target: Mailing lists (CSV)

fe805d13-481b-43ec-97d8-9d2df72cd38e

Target: Wordpress

Wordpress system

dd683dd5-b7b0-414c-a1d9-7039340ad70b

+
+

2.1. Source: Groups

+
+

Groups from Grouper

+
+
+

2.1.1. Basic Information

+
Connector
+
+

Resource uses GrouperConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

baseUrl

https://grouper-ws:443

username

banderson

password

XML

ignoreSslValidation

true

baseStem

:

groupIncludePattern

app:.*

groupIncludePattern

test:.*

groupIncludePattern

ref:.*

groupExcludePattern

.*_(includes

excludes

systemOfRecord

systemOfRecordAndIncludes)

subjectSource

ldap

testStem

:

+
Results Handlers Configuration
+ ++++ + + + + + + + + + + + + + + + + + + + + +
ParameterValue

enableAttributesToGetSearchResultsHandler

false

enableFilteredResultsHandler

true

enableNormalizingResultsHandler

false

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

testConnection

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@6a49e1a2[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.1.2. Object Types

+
+
ENTITLEMENT/group
+ +++++ + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

member

name

+
+
Attribute Details
+
+

member

+
+
+

name

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

extension/grouperName

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
import com.evolveum.midpoint.schema.util.*
+import com.evolveum.midpoint.schema.constants.*
+
+if (input == null) {
+    null
+} else {
+    archetypeOid = '5f2b96d2-49b5-4a8a-9601-14457309a69b'       // generic-grouper-group archetype
+    switch (input) {
+        case ~/ref:affiliation:.*/: archetypeOid = '56f53812-047d-4b69-83e8-519a73d161e1'; break;   // affiliation archetype
+        case ~/ref:dept:.*/: archetypeOid = '1cec5f78-8fba-459b-9547-ef7485009f40'; break;          // department archetype
+        case ~/ref:course:.*/: archetypeOid = '3dab9a72-118b-4e40-a138-bb691c335eca'; break;        // course archetype
+        case ~/app:mailinglist:.*/: archetypeOid = '1645d1dc-1f7c-4508-b50b-97b501ccdee3'; break;   // mailing-list archetype
+    }
+    ObjectTypeUtil.createAssignmentTo(archetypeOid, ObjectTypes.ARCHETYPE, prismContext)
+}
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>RoleType</targetType>
+    <oid>30082d24-0bea-4f22-b558-d0ee2a399c38</oid>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>RoleType</targetType>
+    <oid>9e5a82fc-7969-4fd8-9f74-e0857969cdbb</oid>
+</t:object>
+
+
+
+
+
+
+

2.1.3. Synchronization

+
+
ENTITLEMENT/group
+ +
+
+
+
+

2.2. Source: Guest DB

+
+

Guests from COmanage via SQL

+
+
+

2.2.1. Basic Information

+
Connector
+
+

Resource uses DatabaseTableConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

host

comanage-midpoint-data

port

5432

user

comanage_midpoint_loader

password

XML

database

comanage_midpoint_loader

table

vwPersons

keyColumn

coperson_id

jdbcDriver

org.postgresql.Driver

jdbcUrlTemplate

jdbc:postgresql://%h:%p/%d?keepalives=1&keepalives_idle=120&useUnicode=true&characterEncoding=utf8&connectionCollation=utf8_bin

enableEmptyString

false

rethrowAllSQLExceptions

true

nativeTimestamps

false

allNative

true

changeLogColumn

last_modified

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@54bfb612[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.2.2. Object Types

+
+
Normal User Account
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

description (Display Name)

Displayname attribute

emailaddress (Email Address)

Email Address attribute

familyname (Last name)

Lastname attribute

fullname (Full name)

Fullname attribute

givenname (First name)

Firstname attribute

name (Guest ID)

Guest Identifier

+
+
Attribute Details
+
+

description (Display Name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/description

+
+
+

emailaddress (Email Address)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/emailAddress

+
+
+

familyname (Last name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/familyName

+
+
+

fullname (Full name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/fullName

+
+
+

givenname (First name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/givenName

+
+
+

name (Guest ID)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/name

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

extension/Guest_ID

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of Guest SOR archetype

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:ArchetypeType</targetType>
+    <oid>3d290ffd-35d6-40d5-9b20-964f891f569c</oid>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of Guest SOR organization

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:OrgType</targetType>
+    <oid>55ced112-264c-4c77-a1bf-9e32d8a138b0</oid>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of role-ldap-basic role

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:RoleType</targetType>
+    <oid>c89f31dd-8d4f-4e0a-82cb-58ff9d8c1b2f</oid>
+</t:object>
+
+
+
+
+
+
+

2.2.3. Synchronization

+
+
ACCOUNT
+ +
+
+
+
+

2.3. Source: HR System

+
+

Staff from HR via CSV

+
+
+

2.3.1. Basic Information

+
Connector
+
+

Resource uses CsvConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

fieldDelimiter

,

quote

"

filePath

/opt/midpoint/csv/source-hr.csv

readOnly

true

encoding

utf-8

ignoreSurroundingSpaces

true

uniqueAttribute

uid

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@19ba87d8[language=<null>,type=RESOURCE], com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@b46b8a6[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
Configured
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

delete

+
    +
  • +

    enabled: false

    +
    • +
+

update

+
    +
  • +

    enabled: false

    +
    • +
+

create

+
    +
  • +

    enabled: false

    +
    • +
+

countObjects

+
    +
  • +

    simulate:

    +
    +
      +
    • +

      value: sequentialSearch

      +
      • +
    +
    +
    • +
+
+
+
+

2.3.2. Object Types

+
+
Default Account, ACCOUNT/default
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

department (Department name)

firstname (First name)

lastname (Last name)

mail (E-mail)

uid

+
+
Attribute Details
+
+

department (Department name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

organizationalUnit

+
+
+

firstname (First name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

givenName

+
+
+

lastname (Last name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

familyName

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

+

$projection/attributes/firstname
+     ⇒ firstname

+

Target

+

fullName

+
+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
basic.concatName(firstname, input)
+
+
+
+

mail (E-mail)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

emailAddress

+
+
+

uid

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

extension/HR_ID

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of HR SOR archetype

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:ArchetypeType</targetType>
+    <oid>9ea701a0-fefb-11e9-aa4a-6f55fba8896e</oid>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of HR SOR organization

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:OrgType</targetType>
+    <oid>9938f92a-015e-11ea-97bc-a3be3b7d3f5f</oid>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + + + + + +

Name

Description

Assignment of role-ldap-basic role

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>c:RoleType</targetType>
+    <oid>c89f31dd-8d4f-4e0a-82cb-58ff9d8c1b2f</oid>
+</t:object>
+
+
+
+
+
Credentials
+ +
+
+
+
+

2.3.3. Synchronization

+
+
Default account, ACCOUNT/default
+ +
+
+
+
+

2.4. Source: SIS DB

+
+

Students/Faculty from SIS via SQL

+
+
+

2.4.1. Basic Information

+
Connector
+
+

Resource uses ScriptedSQLConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

quoting

XML

host

sources

port

3306

user

root

password

XML

database

sis

jdbcDriver

org.mariadb.jdbc.Driver

jdbcUrlTemplate

jdbc:mysql://%h:%p/%d?useUnicode=true&characterEncoding=utf8&connectionCollation=utf8_bin

enableEmptyString

true

rethrowAllSQLExceptions

true

nativeTimestamps

false

allNative

false

validConnectionQuery

XML

datasource

XML

scriptingLanguage

GROOVY

jndiProperties

XML

reloadScriptOnExecution

false

searchScriptFileName

/opt/midpoint/var/res/sis-persons/SearchScript.groovy

schemaScriptFileName

/opt/midpoint/var/res/sis-persons/SchemaScript.groovy

testScriptFileName

/opt/midpoint/var/res/sis-persons/TestScript.groovy

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@3f0a0aee[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.4.2. Object Types

+
+
Normal Account, ACCOUNT
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

fullName (Full Name)

givenName (Given Name)

mail (Mail)

surname (Surname)

uid (UID)

+
+
Attribute Details
+
+

fullName (Full Name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

fullName

+
+
+

givenName (Given Name)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

givenName

+
+
+

mail (Mail)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

emailAddress

+
+
+

surname (Surname)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

familyName

+
+
+

uid (UID)

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

extension/SIS_ID

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>RoleType</targetType>
+    <oid>c89f31dd-8d4f-4e0a-82cb-58ff9d8c1b2f</oid>
+    <assignmentProperties xsi:type="c:AssignmentPropertiesSpecificationType">
+        <subtype>grouper-basic</subtype>
+    </assignmentProperties>
+</t:object>
+
+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

Target

+

assignment

+
+
AssignmentTargetSearch
+
+
Relativity:
+Include null inputs:
+
+
+
+
XML
+
+
<t:object xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3" xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3" xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3" xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3" xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3" xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="c:AssignmentTargetSearchExpressionEvaluatorType">
+    <targetType>ArchetypeType</targetType>
+    <oid>958da09c-fefb-11e9-892d-975972472527</oid>
+    <assignmentProperties xsi:type="c:AssignmentPropertiesSpecificationType">
+        <subtype>grouper-basic</subtype>
+    </assignmentProperties>
+</t:object>
+
+
+
+
+
+
+

2.4.3. Synchronization

+
+
ACCOUNT
+ +
+
+
+
+

2.5. Target: Computer science portal (CSV)

+
+

2.5.1. Basic Information

+
Connector
+
+

Resource uses CsvConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

multivalueDelimiter

;

fieldDelimiter

,

filePath

/opt/midpoint/var/cs-portal.csv

encoding

utf-8

uniqueAttribute

identifier

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@d2b2c01[language=<null>,type=RESOURCE], com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@26286229[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.5.2. Object Types

+
+
Default Account
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

courses

identifier

mail

name

+
+
Attribute Details
+
+

courses

+
+
+

identifier

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

name

+

Target

+
+

mail

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

emailAddress

+

Target

+
+

name

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

fullName

+

Target

+
+
+
+
+

2.5.3. Synchronization

+
+
ACCOUNT
+ +
+
+
+
+

2.6. Target: Faculty portal (CSV)

+
+

2.6.1. Basic Information

+
Connector
+
+

Resource uses CsvConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

multivalueDelimiter

;

fieldDelimiter

,

filePath

/opt/midpoint/var/faculty-portal.csv

encoding

utf-8

uniqueAttribute

uid

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@ce53036[language=<null>,type=RESOURCE], com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@6723d56[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.6.2. Object Types

+
+
Default Account
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

familyName

fullName

givenName

mail

uid

+
+
Attribute Details
+
+

familyName

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

familyName

+

Target

+
+

fullName

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

fullName

+

Target

+
+

givenName

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

givenName

+

Target

+
+

mail

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

emailAddress

+

Target

+
+

uid

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

name

+

Target

+
+
+
+
+

2.6.3. Synchronization

+
+
ACCOUNT
+ +
+
+
+
+

2.7. Target: LDAP directory

+
+

Main LDAP directory

+
+
+

2.7.1. Basic Information

+
Connector
+
+

Resource uses LdapConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

host

directory

port

389

bindDn

cn=Directory Manager

bindPassword

XML

baseContext

dc=internet2,dc=edu

pagingStrategy

spr

uidAttribute

nsUniqueId

operationalAttributes

memberOf

operationalAttributes

createTimestamp

operationalAttributes

nsAccountLock

+
Results Handlers Configuration
+ ++++ + + + + + + + + + + + + + + + + + + + + +
ParameterValue

enableAttributesToGetSearchResultsHandler

false

enableFilteredResultsHandler

false

enableNormalizingResultsHandler

false

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
  • +

    delta: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@78b8ed4[language=<null>,type=CONNECTOR]]

    +
    • +
+

credentials

+
    +
  • +

    password:

    +
    +
      +
    • +

      returnedByDefault: false

      +
      • +
    +
    +
    • +
+

auxiliaryObjectClasses

pagedSearch

read

+
    +
  • +

    returnDefaultAttributesOption: true

    +
    • +
+
+
+
+

2.7.2. Object Types

+
+
Normal Account, ACCOUNT
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

businessCategory

cn (Common Name)

dn (Distinguished Name)

employeeNumber

givenName (Given Name)

incwbPersonEmployeeID (Employee ID)

incwbPersonGuestID (Guest ID)

incwbPersonStudentID (Student ID)

mail (Mail)

sn (Surname)

uid (Login Name)

+
+
Attribute Details
+
+

businessCategory

+
+
+

cn (Common Name)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

fullName

+

Target

+
+

dn (Distinguished Name)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

employeeNumber

+

Target

+
Script
+
+
Relativity:
+Include null inputs:
+
+
+
+
Groovy
+
+
'uid=' + employeeNumber + ',ou=People,dc=internet2,dc=edu'
+
+
+
+

employeeNumber

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

employeeNumber

+

Target

+
+

givenName (Given Name)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

givenName

+

Target

+
+

incwbPersonEmployeeID (Employee ID)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

extension/HR_ID

+

Target

+
+

incwbPersonGuestID (Guest ID)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

extension/Guest_ID

+

Target

+
+

incwbPersonStudentID (Student ID)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

extension/SIS_ID

+

Target

+
+

mail (Mail)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

emailAddress

+

Target

+
+

sn (Surname)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

familyName

+

Target

+
+

uid (Login Name)

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

employeeNumber

+

Target

+
+
+
Credentials
+ +
+
+
Association
+ +
+
+
+
LDAP Group, ENTITLEMENT/group
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

cn

dn

uniqueMember

+
+
Attribute Details
+
+

cn

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: weak

Authoritative:

Exclusive:

Source

+

identifier

+

Target

+
+

dn

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

extension/ldapDn

+

Target

+
+

uniqueMember

+
+
+
+
+
+

2.7.3. Synchronization

+
+
ACCOUNT
+ +
+
+
group sync, ENTITLEMENT/group
+ +
+
+
+
+

2.8. Target: Mailing lists (CSV)

+
+

2.8.1. Basic Information

+
Connector
+
+

Resource uses CsvConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

multivalueDelimiter

;

fieldDelimiter

,

filePath

/opt/midpoint/var/mailing-lists.csv

encoding

utf-8

uniqueAttribute

uid

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

liveSync

testConnection

create

update

+
    +
  • +

    addRemoveAttributeValues: true

    +
    • +
+

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@2fe7ff8d[language=<null>,type=RESOURCE], com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@395bba0d[language=<null>,type=CONNECTOR]]

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
+
+

2.8.2. Object Types

+
+
Default Account
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

lists

mail

uid

+
+
Attribute Details
+
+

lists

+
+
+

mail

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

emailAddress

+

Target

+
+

uid

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

name

+

Target

+
+
+
+
+

2.8.3. Synchronization

+
+
ACCOUNT
+ +
+
+
+
+

2.9. Target: Wordpress

+
+

Wordpress system

+
+
+

2.9.1. Basic Information

+
Connector
+
+

Resource uses WordpressRestConnector connector. Artifact details:

+
+
+ +
+
Connector Configuration
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValueDescription

wordpressPassword

password

trustAllCertificates

true

wordpressUniqueAttribute

id

wordpressRestUrl

http://wordpress_server/wordpress/wp-json

wordpressPasswordAttribute

password

wordpressNameAttribute

username

wordpressUsername

banderson

wordpressRecyclebinUser

1

wordpressSoftUserDelete

true

+
Capabilities
+
Native
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

schema

testConnection

create

update

delete

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@6a45d911[language=<null>,type=CONNECTOR]]

    +
    • +
+

addRemoveAttributeValues

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
+
+
Configured
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
CapabilityOptions

testConnection

+
    +
  • +

    enabled: true

    +
    • +
+

create

+
    +
  • +

    enabled: true

    +
    • +
+

update

+
    +
  • +

    enabled: true

    +
    • +
+

delete

+
    +
  • +

    enabled: true

    +
    • +
+

script

+
    +
  • +

    host:[com.evolveum.midpoint.xml.ns._public.resource.capabilities_3.ScriptCapabilityHostType@2d865602[language=<null>,type=CONNECTOR]]

    +
    • +
  • +

    enabled: true

    +
    • +
+

addRemoveAttributeValues

+
    +
  • +

    enabled: true

    +
    • +
+

read

+
    +
  • +

    returnDefaultAttributesOption: false

    +
    • +
  • +

    enabled: true

    +
    • +
+

activation

+
    +
  • +

    status

    +
    • +
+
+
+
+

2.9.2. Object Types

+
+
ACCOUNT/default
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
AttributeTypeDescription

email

first_name

last_name

name

name

username

+
+
Attribute Details
+
+

email

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

$user/emailAddress

+

Target

+
+

first_name

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

+

$user/givenName

+

Target

+
+

last_name

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

+

$user/familyName

+

Target

+
+

name

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/fullName

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

+

$user/fullName

+

Target

+
+

name

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/name

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

$user/name

+

Target

+
+

username

+
+
+

Inbounds

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength:

Authoritative:

Exclusive:

Source

Target

+

$user/name

+
+
+

Outbound

+
+ ++++++ + + + + + + + + + + + + + + + + + + +

Name

Options

Strength: strong

Authoritative:

Exclusive:

Source

+

$user/name

+

Target

+
+
+
Credentials
+ +
+
+
Activation
+ +
+
+
+
+

2.9.3. Synchronization

+
+
Account sync policy, ACCOUNT/default
+ +
+
+
+
+
+
+

3. Function Libraries

+
+ +++++ + + + + + + + + + + + + + + +
NameDescriptionOid

grouper

Functions for Grouper AMQP connector

2eef4181-25fa-420f-909d-846a36ca90f3

+
+

3.1. grouper

+
+

Functions for Grouper AMQP connector

+
+
+

3.1.1. createUcfChange

+
+
Parameters
+ ++++ + + + + + + + + + + + + + + + + + + + + + + + + +
ParameterValue

message

{http://midpoint.evolveum.com/xml/ns/public/common/common-3}AsyncUpdateMessageType

groupIncludePattern

{http://www.w3.org/2001/XMLSchema}anyType

groupExcludePattern

{http://www.w3.org/2001/XMLSchema}anyType

relevantSourceId

{http://www.w3.org/2001/XMLSchema}string

+
+
+
Return Type
+
+

{http://midpoint.evolveum.com/xml/ns/public/common/common-3}UcfChangeType

+
+
+
+
+
+
+
+

4. Organization Units

+
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
NameDescriptionOid

affiliations

1d7c0e3a-4456-409c-9f50-95407b2eb785

courses

225e9360-0639-40ba-8a31-7f31bef067be

departments

bee44c51-2469-411d-bac7-695728e9c241

generic-groups

1f339075-5b2f-4a18-9c98-451f3eb0d28d

guest

55ced112-264c-4c77-a1bf-9e32d8a138b0

hr

9938f92a-015e-11ea-97bc-a3be3b7d3f5f

mailing-lists

d81fb46c-20c7-44d3-8402-fef404ea1264

midpoint-groups

4790ab69-7ef0-41a4-8992-78877f3beb23

org-grouper-sysadmin

d48ec05b-fffd-4262-acd3-d9ff63365b62

+
+

4.1. affiliations

+ +
+
+

4.2. courses

+ +
+
+

4.3. departments

+ +
+
+

4.4. generic-groups

+ +
+
+

4.5. guest

+ +
+
+

4.6. hr

+ +
+
+

4.7. mailing-lists

+ +
+
+

4.8. midpoint-groups

+ +
+
+

4.9. org-grouper-sysadmin

+ +
+
+
+
+

5. Roles

+
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
NameDescriptionOid

Direct Wordpress Admin Role

9d31d997-c300-497a-86fc-5c90a96e7f95

Direct Wordpress Editor Role

eb97c854-b7d1-43ce-81f2-551bbcf18c7d

Metarole Wordpress Admin

9e5a82fc-7969-4fd8-9f74-e0857969cdbb

Metarole Wordpress Editor

30082d24-0bea-4f22-b558-d0ee2a399c38

metarole-grouper-provided-group

A metarole for archetyped Grouper-provided groups

bcaec940-50c8-44bb-aa37-b2b5bb2d5b90

metarole-ldap-group

A metarole for archetyped LDAP groups

8da46694-bd71-4e1e-bfd7-73865ae2ea9a

role-ldap-basic

c89f31dd-8d4f-4e0a-82cb-58ff9d8c1b2f

+
+

5.1. Direct Wordpress Admin Role

+ +
+
+

5.2. Direct Wordpress Editor Role

+ +
+
+

5.3. Metarole Wordpress Admin

+ +
+
+

5.4. Metarole Wordpress Editor

+ +
+
+

5.5. metarole-grouper-provided-group

+
+

A metarole for archetyped Grouper-provided groups

+
+
+
+

5.6. metarole-ldap-group

+
+

A metarole for archetyped LDAP groups

+
+
+
+

5.7. role-ldap-basic

+ +
+
+
+
+

6. Tasks

+
+ +++++ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
NameDescriptionOid

Groups: Full Reconciliation

605a0127-a313-442a-9d5e-151eac8b0745

Groups: Group Scavenger

1d7bef40-953e-443e-8e9a-ec6e313668c4

Groups: Live updates

47fc57bd-8c34-4555-9b9f-7087ff179860

Guests: Full Import

9ddfc0ff-6293-4f34-8eb7-5a049c21480f

Guests: Livesync

COmanage SQL live synchronization task. It will poll changelog and pull in changes

5a821505-7318-4364-9a2f-501b8bf30b44

HR: Full Import

62b23d51-8b36-454a-af39-45e078a4563f

SIS: Full Import

22c2a3d0-0961-4255-9eec-c550a79aeaaa

Trigger Scanner

A system task that executes triggers attached to objects.

00000000-0000-0000-0000-000000000007

User recomputation

83a737ea-5eb7-4e78-b431-331cccf02354

+
+

6.1. Groups: Full Reconciliation

+ +
+
+

6.2. Groups: Group Scavenger

+ +
+
+

6.3. Groups: Live updates

+ +
+
+

6.4. Guests: Full Import

+ +
+
+

6.5. Guests: Livesync

+
+

COmanage SQL live synchronization task. It will poll changelog and pull in changes

+
+
+
+

6.6. HR: Full Import

+ +
+
+

6.7. SIS: Full Import

+ +
+
+

6.8. Trigger Scanner

+
+

A system task that executes triggers attached to objects.

+
+
+
+

6.9. User recomputation

+ +
+
+
+
+ + + + + + + + +