From 6c5c58f3a99990cdbfae5c83edb8e868eba44e07 Mon Sep 17 00:00:00 2001
From: Ethan Kromhout <ethan@unc.edu>
Date: Tue, 1 Dec 2020 13:34:01 -0500
Subject: [PATCH 1/2] Adding midPoint and Grouper initial objects

---
 .../container_files/tmp/initialize.gsh        | 53 +++++++++++++++++++
 .../tasks/996-task-import-sis-persons.xml     | 34 ++++++++++++
 .../tasks/997-task-async-update-grouper.xml   | 40 ++++++++++++++
 ...998-task-reconciliation-grouper-groups.xml | 41 ++++++++++++++
 .../tasks/999-task-recomputation-users.xml    | 22 ++++++++
 5 files changed, 190 insertions(+)
 create mode 100644 Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/996-task-import-sis-persons.xml
 create mode 100644 Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/997-task-async-update-grouper.xml
 create mode 100644 Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/998-task-reconciliation-grouper-groups.xml
 create mode 100644 Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/999-task-recomputation-users.xml

diff --git a/Workbench/grouper_daemon/container_files/tmp/initialize.gsh b/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
index 67ebc1a..31ccd9c 100644
--- a/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
+++ b/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
@@ -30,4 +30,57 @@ idmfans = new GroupSave(gs).assignName("app:mailinglist:idm-fans").assignCreateP
 cs = new GroupSave(gs).assignName("app:cs").assignCreateParentStemsIfNotExist(true).save()
 volunteers = new GroupSave(gs).assignName("test:volunteers").assignCreateParentStemsIfNotExist(true).save()
 
+
+group = new GroupSave(gs).assignName("etc:affiliationLoader").assignCreateParentStemsIfNotExist(true).save()
+group.addType(GroupTypeFinder.find("grouperLoader"))
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderType", "SQL_GROUP_LIST")
+group.setAttribute("grouperLoaderScheduleType", "CRON")
+group.setAttribute("grouperLoaderQuartzCron", "0 * * * * ?")
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderGroupTypes", "addIncludeExclude")
+group.setAttribute("grouperLoaderQuery", "SELECT concat('ref:affiliation:',affiliation,'_systemOfRecord') as GROUP_NAME, uid as SUBJECT_ID, 'ldap' as SUBJECT_SOURCE_ID from SIS_AFFILIATIONS")
+
+group = new GroupSave(gs).assignName("etc:deptLoader").assignCreateParentStemsIfNotExist(true).save()
+group.addType(GroupTypeFinder.find("grouperLoader"))
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderType", "SQL_GROUP_LIST")
+group.setAttribute("grouperLoaderScheduleType", "CRON")
+group.setAttribute("grouperLoaderQuartzCron", "0 * * * * ?")
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderQuery", "SELECT concat('ref:dept:',department) as GROUP_NAME, uid as SUBJECT_ID, 'ldap' as SUBJECT_SOURCE_ID from SIS_PERSONS where department is not null")
+
+group = new GroupSave(gs).assignName("etc:coursesLoader").assignCreateParentStemsIfNotExist(true).save()
+group.addType(GroupTypeFinder.find("grouperLoader"))
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderType", "SQL_GROUP_LIST")
+group.setAttribute("grouperLoaderScheduleType", "CRON")
+group.setAttribute("grouperLoaderQuartzCron", "0 * * * * ?")
+group.setAttribute("grouperLoaderDbName", "sis")
+group.setAttribute("grouperLoaderQuery", "SELECT concat('ref:course:',courseId) as GROUP_NAME, uid as SUBJECT_ID, 'ldap' as SUBJECT_SOURCE_ID from SIS_COURSES")
+
+edu.internet2.middleware.grouper.app.loader.GrouperLoaderType.scheduleLoads()
+
+
+
+def addGroups(gs,stem,owner,regexp) {
+	for (group in stem.childGroups) {
+		if (!group.name.endsWith('_includes') &&
+		    !group.name.endsWith('_excludes') &&
+		    !group.name.endsWith('_systemOfRecord') &&
+		    !group.name.endsWith('_systemOfRecordAndIncludes') &&
+		    (regexp == null || group.extension ==~ regexp)) {
+			println 'Adding: ' + group
+			def s = SubjectFinder.findById(group.getId(), 'group', 'g:gsa')
+			owner.addMember(s, false)
+		} else {
+			println 'Ignoring: ' + group
+		}
+	}
+}
+
+def cs = GroupFinder.findByName(gs, "app:cs", true)
+
+addGroups(gs, StemFinder.findByName(gs, 'ref:course'), cs, /CS.*/)
+
 System.out.println("************** initialize.gsh done.")
diff --git a/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/996-task-import-sis-persons.xml b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/996-task-import-sis-persons.xml
new file mode 100644
index 0000000..58189c0
--- /dev/null
+++ b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/996-task-import-sis-persons.xml
@@ -0,0 +1,34 @@
+<task xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+      xmlns:q="http://prism.evolveum.com/xml/ns/public/query-3"
+      xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+      xmlns:t="http://prism.evolveum.com/xml/ns/public/types-3"
+      xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3"
+      xmlns:icfs="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/resource-schema-3"
+      xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3"
+      oid="22c2a3d0-0961-4255-9eec-c550a79aeaaa">
+   <name>Import from SIS persons</name>
+   <extension xmlns:mext="http://midpoint.evolveum.com/xml/ns/public/model/extension-3"
+              xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+              xsi:type="c:ExtensionType">
+      <mext:kind>account</mext:kind>
+      <mext:objectclass>ri:AccountObjectClass</mext:objectclass>
+<!--
+      <mext:tracing>
+          <interval>500</interval>
+      </mext:tracing> -->
+   </extension>
+   <assignment>
+      <targetRef oid="00000000-0000-0000-0000-000000000503" type="ArchetypeType" /> <!--Import task-->
+   </assignment>
+   <taskIdentifier>1535407239440-0-1</taskIdentifier>
+   <ownerRef oid="00000000-0000-0000-0000-000000000002"
+             relation="org:default"
+             type="c:UserType"><!-- administrator --></ownerRef>
+   <executionStatus>runnable</executionStatus>
+   <category>ImportingAccounts</category>
+   <objectRef oid="4d70a0da-02dd-41cf-b0a1-00e75d3eaa15"
+              relation="org:default"
+              type="c:ResourceType"><!-- SQL SIS persons (sources) --></objectRef>
+   <recurrence>single</recurrence>
+   <binding>loose</binding>
+</task>
diff --git a/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/997-task-async-update-grouper.xml b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/997-task-async-update-grouper.xml
new file mode 100644
index 0000000..5007ae4
--- /dev/null
+++ b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/997-task-async-update-grouper.xml
@@ -0,0 +1,40 @@
+<!--
+  ~ Copyright (c) 2010-2019 Evolveum
+  ~
+  ~ Licensed under the Apache License, Version 2.0 (the "License");
+  ~ you may not use this file except in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~     http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing, software
+  ~ distributed under the License is distributed on an "AS IS" BASIS,
+  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ See the License for the specific language governing permissions and
+  ~ limitations under the License.
+  -->
+
+<task xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+	  xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+	  xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3"
+	  oid="47fc57bd-8c34-4555-9b9f-7087ff179860">
+	<name>Grouper async updates</name>
+	<extension xmlns:mext="http://midpoint.evolveum.com/xml/ns/public/model/extension-3">
+		<mext:workerThreads>1</mext:workerThreads>
+	</extension>
+	<assignment>
+		<targetRef oid="00000000-0000-0000-0000-000000000505" type="ArchetypeType" /> <!-- Asynchronous update task -->
+	</assignment>
+	<taskIdentifier>1552664339630-0-2</taskIdentifier>
+	<ownerRef oid="00000000-0000-0000-0000-000000000002" relation="org:default" type="c:UserType">
+		<!-- administrator -->
+	</ownerRef>
+	<executionStatus>runnable</executionStatus>
+	<category>AsynchronousUpdate</category>
+	<objectRef oid="1eff65de-5bb6-483d-9edf-8cc2c2ee0233" relation="org:default" type="c:ResourceType">
+		<!-- Grouper Resource -->
+	</objectRef>
+	<recurrence>single</recurrence>
+	<binding>loose</binding>
+	<threadStopAction>restart</threadStopAction>
+</task>
diff --git a/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/998-task-reconciliation-grouper-groups.xml b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/998-task-reconciliation-grouper-groups.xml
new file mode 100644
index 0000000..4e024cc
--- /dev/null
+++ b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/998-task-reconciliation-grouper-groups.xml
@@ -0,0 +1,41 @@
+<!--
+  ~ Copyright (c) 2010-2019 Evolveum
+  ~
+  ~ Licensed under the Apache License, Version 2.0 (the "License");
+  ~ you may not use this file except in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~     http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing, software
+  ~ distributed under the License is distributed on an "AS IS" BASIS,
+  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ See the License for the specific language governing permissions and
+  ~ limitations under the License.
+  -->
+
+<task xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+	  xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+	  xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3"
+	  xmlns:ri="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3"
+	  oid="605a0127-a313-442a-9d5e-151eac8b0745">
+	<name>Grouper reconciliation (groups)</name>
+	<extension xmlns:mext="http://midpoint.evolveum.com/xml/ns/public/model/extension-3">
+		<mext:objectclass>ri:Group</mext:objectclass>
+	</extension>
+	<assignment>
+		<targetRef oid="00000000-0000-0000-0000-000000000501" type="ArchetypeType" /> <!-- Reconciliation task -->
+	</assignment>
+	<taskIdentifier>605a0127-a313-442a-9d5e-151eac8b0745</taskIdentifier>
+	<ownerRef oid="00000000-0000-0000-0000-000000000002" relation="org:default" type="c:UserType">
+		<!-- administrator -->
+	</ownerRef>
+	<executionStatus>runnable</executionStatus>
+	<category>Reconciliation</category>
+	<objectRef oid="1eff65de-5bb6-483d-9edf-8cc2c2ee0233" relation="org:default" type="c:ResourceType">
+		<!-- Grouper Resource -->
+	</objectRef>
+	<recurrence>single</recurrence>
+	<binding>loose</binding>
+	<threadStopAction>restart</threadStopAction>
+</task>
diff --git a/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/999-task-recomputation-users.xml b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/999-task-recomputation-users.xml
new file mode 100644
index 0000000..179b565
--- /dev/null
+++ b/Workbench/midpoint_server/container_files/mp-home/post-initial-objects/tasks/999-task-recomputation-users.xml
@@ -0,0 +1,22 @@
+<task xmlns="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+      xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
+      xmlns:org="http://midpoint.evolveum.com/xml/ns/public/common/org-3"
+      oid="83a737ea-5eb7-4e78-b431-331cccf02354">
+    <name>User recomputation</name>
+    <extension xmlns:mext="http://midpoint.evolveum.com/xml/ns/public/model/extension-3">
+        <mext:objectType>c:UserType</mext:objectType>
+        <!-- <mext:tracingInterval>200</mext:tracingInterval> -->
+    </extension>
+    <assignment>
+        <targetRef oid="00000000-0000-0000-0000-000000000502" type="ArchetypeType"/> <!--Recomputation task -->
+    </assignment>
+    <taskIdentifier>1571729899646-0-1</taskIdentifier>
+    <ownerRef oid="00000000-0000-0000-0000-000000000002" relation="org:default" type="c:UserType">
+        <!-- administrator -->
+    </ownerRef>
+    <channel>http://midpoint.evolveum.com/xml/ns/public/provisioning/channels-3#recompute</channel>
+    <executionStatus>runnable</executionStatus>
+    <category>Recomputation</category>
+    <recurrence>single</recurrence>
+    <binding>tight</binding>
+</task>

From 778af20741c301bed23ec52fba1cf662caa6f2b8 Mon Sep 17 00:00:00 2001
From: Ethan Kromhout <ethan@unc.edu>
Date: Tue, 1 Dec 2020 14:03:45 -0500
Subject: [PATCH 2/2] Adding midPoint and Grouper initial objects

---
 Workbench/grouper_daemon/container_files/tmp/initialize.gsh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Workbench/grouper_daemon/container_files/tmp/initialize.gsh b/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
index 31ccd9c..844a49a 100644
--- a/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
+++ b/Workbench/grouper_daemon/container_files/tmp/initialize.gsh
@@ -81,6 +81,7 @@ def addGroups(gs,stem,owner,regexp) {
 
 def cs = GroupFinder.findByName(gs, "app:cs", true)
 
+gs = GrouperSession.startRootSession()
 addGroups(gs, StemFinder.findByName(gs, 'ref:course'), cs, /CS.*/)
 
 System.out.println("************** initialize.gsh done.")