SecondaryIdentitiesAccessModifier Class |
* He is the manager of the secondary identity (if ACCESSMODE contains MANAGER). A user is manager for a secondary identity if:
* He is manager of it’s primary identity
* The secondary identity is placed in the OU or one of the child OU’s of the manager
* He is the owner of the identity (if ACCESSMODE contains OWNER)
* He is the owner of the secondary identity (if ACCESSMODE contains OWNER). A user owns a secondary identity if:
* He/she is the Identity Owner of the secondary identity
* The secondary identity has no Identity Owner and he/she is the manager of it
The access modifier supports the parameter ACCESSMODE. The value of ACCESSMODE must be a comma delimited string with one or more of these values: MANAGER, OWNER, ADMINS, ALL If ACCESSMODE is not specified than all access modes are applyed.
The following only applies if ACCESSMODE contains ADMINS: The SYSTEM user havs access to all identities. Members of the built-in Administrators group by default have access to all identities as well. This can, however, be changed by using the ADMINGROUPS parameter.
The following only applies if ACCESSMODE contains ADMINS: The access modifier supports the parameter ADMINGROUPS which can be used to specify a number of user groups who's members should have access to all identities. If ADMINGROUPS is not specified then the value defaults to the built-in Administrators group. If ADMINGROUPS is specified then the built-in Administrators group must be included in order to have access. The access modifier also supports the parameter ADMINGROUPSKEY which works in the same way except that the value must be the key of a customer setting which holds a comma delimited string with user group uids.
The following only applies if ACCESSMODE contains ADMINS: The access modifier supports the parameter READERGROUPS which can be used to specify a number of user groups who's members should have access to all identities. (used in the standard Identity Access Modifier for read access only) Works the same way as ADMINGROUPS, having READERGROUPSKEY as a custommer setting key.
| Setting | Value |
|---|---|
| Assembly | Omada.OE.Solution.OIM.AppLogic.AccessModifiers |
| Class | SecondaryIdentitiesAccessModifier |
| Parameter | Description |
|---|---|
| ADMINGROUPS | Comma separated list of user group UIds. The users in this groups will have access to all identities. Only applied if ADMINGROUPSKEY is not present in the customer settings. |
| ADMINGROUPSKEY | Customer setting key for a list of ADMINGROUPS |
| READERGROUPS | Comma separated list of user group UIds. The users in this groups will have access to all identities. Only applied if READERGROUPSKEY is not present in the customer settings. |
| READERGROUPSKEY | Customer setting key for a list of READERGROUPS |
| ACCESSMODE | Specifies which access mode will be used. Possible values: MANAGER,OWNER,ADMINS,ALL |
ExamplesInheritance HierarchyOmada.OE.AppLogic.AccessModifiersAccessModifierBase
Omada.OE.Solution.OIM.AppLogic.AccessModifiersSecondaryIdentitiesAccessModifier
Namespace: Omada.OE.Solution.OIM.AppLogic.AccessModifiers
Assembly: Omada.OE.Solution.OIM.AppLogic (in Omada.OE.Solution.OIM.AppLogic.dll) Version: 15.0.0.0
Syntaxpublic class SecondaryIdentitiesAccessModifier : AccessModifierBase, IDataObjectAccessModifier, IAccessModifierBase
The SecondaryIdentitiesAccessModifier type exposes the following members.
Constructors| Name | Description | |
|---|---|---|
 | SecondaryIdentitiesAccessModifier |
Methods| Name | Description | |
|---|---|---|
| CalculateAccess |
Not implemented: Access modifier to be used only in views
|
 | GetAccessibleObjects |
The method returns a list of ids of the identities which are accessible to the active user.
The method can be overridden whereby additional ids can be added.
|
| GetParameterValue(IDictionaryString, String, String, Boolean) |
Returns the value of a boolean parameter from the parameter values delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| GetParameterValue(IDictionaryString, String, String, Guid) |
Returns the value of a string parameter from the parameter values delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| GetParameterValue(IDictionaryString, String, String, Int32) |
Returns the value of an integer parameter from the parameter values delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| GetParameterValue(IDictionaryString, String, String, String) |
Returns the value of a string parameter from the parameter values delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| GetUIdsFromParameter(String, String, IDictionaryString, String) |
Returns a collection of UIds from the parameters delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| GetUIdsFromParameter(String, String, IDictionaryString, String, Guid) |
Returns a collection of UIds from the parameters delivered to the Initialize() method.
Method is intended to be used as utility in implementations of the Initialize() method.
(Inherited from AccessModifierBase.) |
| Initialize | |
| ModifyLoadOptions | |
| PrepareAccessCalculation |
Not implemented: Access modifier to be used only in views
|
Extension Methods| Name | Description | |
|---|---|---|
 | ToBool |
Converts object to boolean.
(Defined by ObjectExtensions.) |
| ToDateTime |
Converts object to DateTime.
(Defined by ObjectExtensions.) |
| ToInt |
Converts object to integer.
(Defined by ObjectExtensions.) |
See Also