IdentityController Class

Connection string for the database. Can be null.

DbCommandTimeout is applied to SqlCommand objects created using CreateSqlCommand(). The DbCommandTimeout value is (normally) passed on to other controllers created by the controller. If DbCommandTimeout is Zero then the DB default will be used as timeout.

Consider using CreateCommand() instead of accessing DbConnection directly. DbConnection and DbTransaction are either specified when constucting the controller or the controller constructs them itself (by using ConnectionString) when calling DoInConnection or DoInTransaction. If the caller specified DbConnection and DbTransaction when constucting the controller then the caller is responsible for the management of the connection.

Consider using CreateCommand() instead of accessing DbTransaction directly. DbConnection and DbTransaction are either specified when constucting the controller or the controller constructs them itself (by using ConnectionString) when calling DoInConnection or DoInTransaction. If the caller specified DbConnection and DbTransaction when constucting the controller then the caller is responsible for the management of the connection.

Factory class for creating controller instances.

Builds a cache key for use with GetFromCacheIfPresent. The cache key is not hashed because we have experienced a collision using GetHashCode() ie. the cache keys are quite long and there is a price in dictionary size in memory and in dictionary lookups.

Checks that the active user is allowed to perform an CRUD operation on a specific configuration object. (note: except that a Create operation is not for a specific object). Throws a SecurityException if not. Method can be used for all configuration objects that are represented by a ConfigurationObjectType (except those that have a compound key). Method checks auth role security as well as whether it is allowed to modify builtin/feature package objects.

Checks that the active user is allowed to Create a new - or Update an existing configuration object. Throws a SecurityException if not. Method can be used for all configuration objects that are represented by a ConfigurationObjectType (except those that have a compound key). Method checks auth role security as well as whether it is allowed to modify builtin/feature package objects.

Converts the integer id of an object to its transport-safe unique id (UId).

Converts a string representation of an integer or Guid id to an integer id.

Converts the transport-safe unique id (UId) of an object to its integer id.

Converts the transport-safe unique ids (UId) of a number of objects to integer ids.

Converts the integer ids of a number of objects to their transport-safe unique ids (UId).

Creates User for Identity setting the UserName to IdentityId.

Creates User for Identity setting the UserName to IdentityId.

Create a new SqlBulkCopy instance using the connection, transaction and timeout values from the controller

Executes an action that doesn't return a result. If no current connection exists, it will establish a connection to the database and close it afterwards. An existing connection will be reused. Inside the action, the connection is available as DbConnection.

Executes an action that doesn't return a result. If no current connection exists, it will establish a connection to the database and close it afterwards. Connection and Transaction are passed to delegate, to allow passing to other controllers An existing connection will be reused. Inside the action, the connection is available as DbConnection. To ensure a new connection set forceNew to true.

Executes an action and returns the result. If no current connection exists, it will establish a connection to the database and close it afterwards. An existing connection will be reused. Inside the action, the connection is available as DbConnection.

Executes an action (that doesn't return a result) in a transaction. If no current connection and/or transaction exists, it will establish it and commit and close it afterwards. An existing connection/transaction will be reused. Inside the action, the connection is available as DbConnection and the transaction as DbTransaction.

Executes an action in a transaction and returns the result. If no current connection and/or transaction exists, it will establish it and commit and close it afterwards. An existing connection/transaction will be reused. Inside the action, the connection is available as DbConnection and the transaction as DbTransaction.

Executes an action in a transaction and returns the result. Connection and Transaction are passed to delegate, to allow passing to other controllers If no current connection and/or transaction exists, it will establish it and commit and close it afterwards. An existing connection/transaction will be reused. Set forceNew to true to ensure new connection and transaction Inside the action, the connection is available as DbConnection and the transaction as DbTransaction.

The method can postpone a SQL transaction implemented by action if the method returns a default number, eg. 0. If the the action method throws a SQL transitent error, then the next call to action is also postponed.

The method can postpone a method invocation if the previous call returned a default number, eg. 0.

Executes a query with a scalar result.

Get an AppIdentity from an identity id.

(Inherited from ControllerBase.)

Retrieves some data from the cache or (if it is not there) executes an action and stores the result in the cache. Caching is not applied if the IgnoreCacheContext is used (depending on the parameter for it). Note: caching should only be used with great care as there are a number of potential issues involved in using it!

The method returns the ids of the users which the specified identities belongs to (if any). Delete-marked users are ignored.

The method returns the ids of the users which the specified identities belongs to (if any). Delete-marked users are ignored.

Returns a DataObjectLoadOptions object prepared for loading identity data objects conforming to a number of identity specific load options.

Returns the timezone for an identity as specified in the Identity.TIMEZONE property. If an identity has no timezone then the system default (specified in the customer settings) is returned.

The method returns the id of the user which the specified identity belongs to. Delete-marked users are ignored.

The method returns the id of the user which the specified identity belongs to. Delete-marked users are ignored.

The method returns the ids of the users which the specified identities belongs to (if any). Delete-marked users are ignored.

Returns the "managers" of an identity. The managers are the owners of the identity's primary context (or the owner of an ancestor context if the primary context itself has no owners). If one or more supervisors are stated (according to the identity's primary context type) on the identity then these are returned as priority one. Managers are either users or (non-personal) groups (or a combination).

Returns the "managers" of an identity. The managers are the owners of the identity's primary context (or the owner of an ancestor context if the primary context itself has no owners). If one or more supervisors are stated (according to the identity's primary context type) on the identity then these are returned as priority one.

Returns the "managers" of an identity. The managers are the owners of the identity's primary context (or the owner of an ancestor context if the primary context itself has no owners). If one or more supervisors are stated (according to the identity's primary context type) on the identity then these are returned as priority one. Managers are either users or (non-personal) groups (or a combination).

Gets the data version of an object.

Returns the id of the org. unit which the identity belongs to.

The method returns the id of the org. unit than an identity was previously working in. If the identity has never been working in other org. units (than the current one) then 0 (zero) is returned. If the identity has been working in more than one other org. units, then the id of the most recent one is returned.

Returns the timezone for a list of identities as specified in the Identity.TIMEZONE property. If an identity has no timezone then the system default (specified in the customer settings) is returned.

Returns the IdentityId for a user. The identity of the user is found by inspecting the 'Identity' reference property present on the User data object type. If the user doesn't have a referred identity the method returns 0.

Returns the IdentityId for a list of users. The identity of the user is found by inspecting the 'Identity' reference property present on the User data object type. If the user doesn't have a referred identity the method returns 0.

(Inherited from ControllerBase.)

Increments the data version of an entity object. The data version is incremented in the db as well as on the object itself. Method is used to update the data version of an object when an aggregated object is created/modified/deleted. The purpose is to ensure that the id-based cache (in AppIdentity) is updated properly.

Increments the data version of an entity object in the db. Method is used to update the data version of an object when an aggregated object is created/modified/deleted. The purpose is to ensure that the id-based cache (in AppIdentity) is updated properly.

Overrides security.

Creates a temporary db table with a single column and populates it with values.

If the action throws a transient sql error, the exception is eaten. An entry is written to the log with level Information. The entire exception is written to the log with level Debug.

Converts/transfers one or more specified uids in a loadoptions object to ids. The purpose is to enable caching as IEntityObjectsLoadOptions.IdList only works with ids (and not uids).

Validates that the data version of an object corresponds to the data version in the DB. Method is used for validation before saving an object.

Converts object to boolean.

Converts object to DateTime.

Converts object to integer.

The method looks up an Identity based on a userPrincipalName account name and a system. The method mimicks how RoPE looks up accounts in ODW which also covers owned accounts. It searches on the DistinguishedName column which we know is mapped from the userPrincipalName in the Azure collector. If it is not found in ODW, we make a simple lookup on the Identity email address.