Skip navigation links

oracle.iam.identity.orgmgmt.api
Interface OrganizationManager

public interface OrganizationManager

The OrganizationManager API exposes the methods to manage an Organization. To manage an Organization, it provides functionality to create, modify, enable, disable and delete the Organization. It also provides the support for bulk enable, disable and delete Organization operations.

Method Summary

java.lang.String	create(Organization org) Creates a new Organization entity in the backend data store.
OrganizationManagerBulkResult	delete(java.util.Set orgIDs, boolean isOrgName) Deletes existing Organizations in bulk.
OrganizationManagerBulkResult	delete(java.util.Set orgIDs, java.util.Map controlParams) Deletes existing Organizations in bulk.
void	delete(java.lang.String orgID, boolean isOrgName) Deletes an already existing Organization entity.
void	delete(java.lang.String orgID, java.util.Map controlParams) Deletes an already existing Organization entity.
void	delete(java.lang.String attributeName, java.lang.Object attributeValue) Deletes an already existing Organization entity.
OrganizationManagerBulkResult	disable(java.util.Set orgIDs, boolean isOrgName) Disables existing Organizations in bulk.
void	disable(java.lang.String orgID, boolean isOrgName) Disables an already existing Organization entity.
void	disable(java.lang.String attributeName, java.lang.Object attributeValue) Disables an already existing Organization entity.
OrganizationManagerBulkResult	enable(java.util.Set orgIDs, boolean isOrgName) Enables existing Organizations in bulk.
void	enable(java.lang.String orgID, boolean isOrgName) Enables an already existing Organization entity.
void	enable(java.lang.String attributeName, java.lang.Object attributeValue) Enables an already existing Organization entity.
SearchRule	getAvailableRolesRule(java.lang.String orgKey) Returns available roles search rule, including search base, search depth and search filter
java.util.List	getChildOrganizations(java.lang.String orgKey, java.util.Set retAttrs, java.util.Map configParams) Returns list of children of the Organization identified by orgKey.
Organization	getDetails(java.lang.String attributeName, java.lang.Object attributeValue, java.util.Set retAttrs) Looks up an already existing Organization entity.
Organization	getDetails(java.lang.String orgID, java.util.Set retAttrs, boolean isOrgName) Looks up an already existing Organization entity.
java.util.List	getOrganizationMembers(java.lang.String orgKey, java.util.Set retAttrs, SearchCriteria sc, java.util.Map configParams) Returns list of User members of the Organization identified by orgkey.
java.util.List	getOrganizationsRoleIsAvailableTo(java.lang.String roleKey, SearchCriteria sc, java.util.Set retAttrs, java.util.Map configParams) Returns orgs role is statically and dynamically available to
java.util.List	getRolesAvailableToOrganization(java.lang.String orgKey, SearchCriteria sc, java.util.Set retAttrs, java.util.Map configParams) returns static and dynamic available roles
SearchRule	getUserMembershipRule(java.lang.String orgKey) Gets the value of act_user_membership_rule attribute of the specified organization.
java.util.List	getUserMemberships(java.lang.String userKey, java.util.Set retAttrs, SearchCriteria sc, java.util.Map configParams) Returns list of Organizations of which the User identified by userKey is a member.
boolean	isRoleAvailableTo(java.lang.String orgKey, java.lang.String roleKey) Returns true if role is available to (statically or dynamically) to specified org
boolean	isRoleDynamicallyAvailableTo(java.lang.String orgKey, java.lang.String roleKey) Returns true if role is dynamically available to specified org
boolean	isUserMemberOf(java.lang.String orgKey, java.lang.String userKey) Returns true if user identified by userKey is a member of the organization identified by orgKey.
java.lang.String	modify(Organization org) Modifies an already existing Organization entity.
java.lang.String	modify(java.lang.String attributeName, java.lang.Object attributeValue, java.util.HashMap attributes) Modifies an already existing Organization entity.
java.util.List	previewDynamicAvailableRoles(java.lang.String orgKey, SearchRule searchRule, java.util.Set retAttrs, java.util.Map configParams) Evaluates and executes search rule to show preview of potential available roles.
java.util.List	previewDynamicUserMembership(java.lang.String orgKey, SearchRule userMembershipRule, java.util.Set retAttrs, java.util.Map configParam) Returns list of User members computed by the membership rule.
java.util.List	search(SearchCriteria sc, java.util.Set retAttrs, java.util.Map config) Searches for Organization entities matching the specified SearchCriteria.
java.lang.String	setAvailableRolesRule(java.lang.String orgKey, SearchRule searchRule) Sets SearchRule as serialized string in db including search base, search depth and search filter.
void	setUdfInMds()
java.lang.String	setUserMembershipRule(java.lang.String orgKey, SearchRule userMembershipRule) Sets the value of act_user_membership_rule attribute of the specified organization.

Method Detail

create

java.lang.String create(Organization org)
                        throws OrganizationManagerException,
                               oracle.iam.platform.authz.exception.AccessDeniedException

Creates a new Organization entity in the backend data store.

Parameters:

org - The Organization value Object containing attributes of the organization to be created.

Returns:

Status of the operation.

Throws:

OrganizationManagerException - If the operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

search

java.util.List search(SearchCriteria sc,
                      java.util.Set retAttrs,
                      java.util.Map config)
                      throws OrganizationManagerException,
                             oracle.iam.platform.authz.exception.AccessDeniedException

Searches for Organization entities matching the specified SearchCriteria.

Parameters:

sc - The search criteria based on which entries will be retrieved from the backend.

retAttrs - The list of attributes which are to be returned for each Organization.

config - Parameters to further configure the search operation. There are four configuration parameters. STARTROW, ENDROW, SORTEDBY and SORTORDER.

The STARTROW and ENDROW search configuration parameters indicates which subset of the complete search result is to be fetched. These parameters are mandatory.

The SORTEDBY search configuration parameter indicates the attribute on which search result is to be sorted. This parameter is optional and is set to 'User Login' by default.

The SORTORDER search configuration parameter indicates the order of sorting. There are two possible values for this parameter. To sort the result in ascending order use SortOrder.ASCENDING and to sort the result in descending order use SortOrder.DESCENDING. This parameter is optional and is set to SortOrder.ASCENDING by default.

Returns:

List of organization entities matching the search criteria.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

getDetails

Organization getDetails(java.lang.String orgID,
                        java.util.Set retAttrs,
                        boolean isOrgName)
                        throws OrganizationManagerException,
                               oracle.iam.platform.authz.exception.AccessDeniedException

Looks up an already existing Organization entity.

Parameters:

orgID - The id of the Organization entity to be looked up. The isOrgName flag determines what does orgID represent.

retAttrs - The list of attributes of the Organization to be returned

isOrgName - Set to true, if the orgID contains Organization name and false if the orgID is Organization key.

Returns:

An Organization entity matching the given orgID.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

getDetails

Organization getDetails(java.lang.String attributeName,
                        java.lang.Object attributeValue,
                        java.util.Set retAttrs)
                        throws OrganizationManagerException,
                               oracle.iam.platform.authz.exception.AccessDeniedException,
                               SearchKeyNotUniqueException

Looks up an already existing Organization entity.

Parameters:

attributeName - The attribute name for the search criteria.

attributeValue - The attribute value for the search criteria.

retAttrs - The list of attributes of the Organization to be returned

Returns:

An Organization entity matching the given search criteria.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

SearchKeyNotUniqueException - If more than one Organization for attributeName and attributeValue were found.

modify

java.lang.String modify(Organization org)
                        throws OrganizationManagerException,
                               oracle.iam.platform.authz.exception.AccessDeniedException

Modifies an already existing Organization entity.

Parameters:

org - The Organization value Object containing attributes and entity id of the Organization to be modified.

Returns:

Status of the operation.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

modify

java.lang.String modify(java.lang.String attributeName,
                        java.lang.Object attributeValue,
                        java.util.HashMap attributes)
                        throws OrganizationManagerException,
                               oracle.iam.platform.authz.exception.AccessDeniedException,
                               SearchKeyNotUniqueException

Modifies an already existing Organization entity.

Parameters:

attributeName - The attribute name for the search criteria.

attributeValue - The attribute value for the search criteria.

attributes - The attributes of the Organization to modify along with their new values

Returns:

Status of the operation.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

SearchKeyNotUniqueException - If more than one Organization for attributeName and attributeValue were found.

delete

void delete(java.lang.String orgID,
            boolean isOrgName)
            throws OrganizationDeleteException,
                   NoSuchOrganizationException,
                   OrganizationAlreadyDeletedException,
                   OrganizationDeleteSubOrgsExistException,
                   OrganizationDeleteSubOrgsUsersExistException,
                   OrganizationDeleteUsersExistException,
                   OrganizationOrphanedPublishedEntitiesException,
                   oracle.iam.platform.authz.exception.AccessDeniedException

Deletes an already existing Organization entity. This is a soft delete and doesn't remove the Organization from the data store. It just marks the Organization entity as 'deleted'.

Parameters:

orgID - The id of the Organization entity to be deleted. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if the orgID contains Organization name and false if the orgID is Organization key.

Throws:

NoSuchOrganizationException - If the Organization with key orgID does not exist.

OrganizationAlreadyDeletedException - If the Organization entity is already deleted.

OrganizationDeleteSubOrgsExistException - If the Organization has child Organizations which are not yet deleted.

OrganizationDeleteSubOrgsUsersExistException - If the Organization has child Organization whose users are not yet deleted.

OrganizationDeleteUsersExistException - If the organization has users which are not yet deleted.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

OrganizationDeleteException - If operation fails due to some internal reason.

OrganizationOrphanedPublishedEntitiesException - If published entities will be orphaned.

delete

void delete(java.lang.String attributeName,
            java.lang.Object attributeValue)
            throws OrganizationDeleteException,
                   NoSuchOrganizationException,
                   OrganizationAlreadyDeletedException,
                   OrganizationDeleteSubOrgsExistException,
                   OrganizationDeleteSubOrgsUsersExistException,
                   OrganizationDeleteUsersExistException,
                   oracle.iam.platform.authz.exception.AccessDeniedException,
                   OrganizationOrphanedPublishedEntitiesException,
                   SearchKeyNotUniqueException

Deletes an already existing Organization entity. This is a soft delete and doesn't remove the Organization from the data store. It just marks the Organization entity as 'deleted'.

Parameters:

attributeName - The attribute name for the search criteria.

attributeValue - The attribute value for the search criteria.

Throws:

NoSuchOrganizationException - If the Organization with attribute name attributeName and value attributeValue does not exist.

OrganizationAlreadyDeletedException - If the Organization entity is already deleted.

OrganizationDeleteSubOrgsExistException - If the Organization has child Organizations which are not yet deleted.

OrganizationDeleteSubOrgsUsersExistException - If the Organization has child Organization whose users are not yet deleted.

OrganizationDeleteUsersExistException - If the Organization has users which are not yet deleted.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

OrganizationDeleteException - If operation fails due to some internal reason.

SearchKeyNotUniqueException - If more than one Organization for attributeName and attributeValue were found.

OrganizationOrphanedPublishedEntitiesException - If published entities will be orphaned.

delete

void delete(java.lang.String orgID,
            java.util.Map controlParams)
            throws OrganizationDeleteException,
                   NoSuchOrganizationException,
                   OrganizationAlreadyDeletedException,
                   OrganizationDeleteSubOrgsExistException,
                   OrganizationDeleteSubOrgsUsersExistException,
                   OrganizationDeleteUsersExistException,
                   OrganizationOrphanedPublishedEntitiesException,
                   oracle.iam.platform.authz.exception.AccessDeniedException

Deletes an already existing Organization entity. This is a soft delete and doesn't remove the Organization from the data store. It just marks the Organization entity as 'deleted'.

Parameters:

orgID - The id of the Organization entity to be deleted.

controlParams - Parameters to control the method logic. Currently may contain the following: If 'isOrgName' flag is set to true, if the orgID contains Organization name and false if the orgID is Organization key. If 'ignoreOrphanedPublishedEntities' flag is set to true if org should be deleted even if deletion will result in orphaned published entities and false if an exception should be thrown if there are orphaned published entities.

Throws:

NoSuchOrganizationException - If the Organization with key orgID does not exist.

OrganizationAlreadyDeletedException - If the Organization entity is already deleted.

OrganizationDeleteSubOrgsExistException - If the Organization has child Organizations which are not yet deleted.

OrganizationDeleteSubOrgsUsersExistException - If the Organization has child Organization whose users are not yet deleted.

OrganizationDeleteUsersExistException - If the organization has users which are not yet deleted.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

OrganizationDeleteException - If operation fails due to some internal reason.

OrganizationOrphanedPublishedEntitiesException - If published entities will be orphaned and ignoreOrphanedPublishedEntities is set to false;

enable

void enable(java.lang.String orgID,
            boolean isOrgName)
            throws OrganizationEnableException,
                   OrganizationAlreadyDeletedException,
                   NoSuchOrganizationException,
                   oracle.iam.platform.authz.exception.AccessDeniedException

Enables an already existing Organization entity.

Parameters:

orgID - The id of the Organization entity to be enabled. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if the orgID contains Organization name and false if the orgID is Organization key.

Throws:

OrganizationAlreadyDeletedException - If the Organization entity is in deleted state.

NoSuchOrganizationException - If the Organization with key orgID does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

OrganizationEnableException - If operation fails due to some internal reason.

enable

void enable(java.lang.String attributeName,
            java.lang.Object attributeValue)
            throws OrganizationEnableException,
                   OrganizationAlreadyDeletedException,
                   NoSuchOrganizationException,
                   oracle.iam.platform.authz.exception.AccessDeniedException,
                   SearchKeyNotUniqueException

Enables an already existing Organization entity.

Parameters:

attributeName - The attribute name for the search criteria.

attributeValue - The attribute value for the search criteria.

Throws:

OrganizationAlreadyDeletedException - If the Organization entity is in deleted state.

NoSuchOrganizationException - If the Organization with attribute name attributeName and value attributeValue does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

OrganizationEnableException - If operation fails due to some internal reason.

SearchKeyNotUniqueException - If more than one Organization for attributeName and attributeValue were found.

disable

void disable(java.lang.String orgID,
             boolean isOrgName)
             throws OrganizationDisableException,
                    NoSuchOrganizationException,
                    OrganizationAlreadyDeletedException,
                    OrganizationDisableSubOrgsExistException,
                    OrganizationDisableSubOrgsUsersExistException,
                    OrganizationDisableUsersExistException,
                    oracle.iam.platform.authz.exception.AccessDeniedException

Disables an already existing Organization entity.

Parameters:

orgID - The id of the Organization entity to be disabled. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if the orgID contains Organization name and false if the orgID is Organization key.

Throws:

NoSuchOrganizationException - If the Organization with key orgID does not exist.

OrganizationAlreadyDeletedException - If the Organization entity is in deleted state.

OrganizationDisableSubOrgsExistException - If the Organization has one or more child Organizations and atleast one child Organization in enabled state.

OrganizationDisableSubOrgsUsersExistException - If the Organization has one or more child Organizations and atleast one user of any of the child Organization is enabled.

OrganizationDisableUsersExistException - If the Organization has atleast one user enabled.

OrganizationDisableException - If operation fails due to some internal reason.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

disable

void disable(java.lang.String attributeName,
             java.lang.Object attributeValue)
             throws OrganizationDisableException,
                    NoSuchOrganizationException,
                    OrganizationAlreadyDeletedException,
                    OrganizationDisableSubOrgsExistException,
                    OrganizationDisableSubOrgsUsersExistException,
                    OrganizationDisableUsersExistException,
                    oracle.iam.platform.authz.exception.AccessDeniedException,
                    SearchKeyNotUniqueException

Disables an already existing Organization entity.

Parameters:

attributeName - The attribute name for the search criteria.

attributeValue - The attribute value for the search criteria.

Throws:

NoSuchOrganizationException - If the Organization with attribute name attributeName and value attributeValue does not exist.

OrganizationAlreadyDeletedException - If the Organization entity is in deleted state.

OrganizationDisableSubOrgsExistException - If the Organization has one or more child Organizations and atleast one child Organization in enabled state.

OrganizationDisableSubOrgsUsersExistException - If the Organization has one or more child Organizations and atleast one user of any of the child Organization is enabled.

OrganizationDisableUsersExistException - If the Organization has atleast one user enabled.

OrganizationDisableException - If operation fails due to some internal reason.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

SearchKeyNotUniqueException - If more than one Organization for attributeName and attributeValue were found.

enable

OrganizationManagerBulkResult enable(java.util.Set orgIDs,
                                     boolean isOrgName)
                                     throws OrganizationStatusChangeException,
                                            NoSuchOrganizationException,
                                            oracle.iam.platform.authz.exception.AccessDeniedException

Enables existing Organizations in bulk.

Parameters:

orgIDs - The ids of the Organizations to be enabled. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if orgIDs contains Organization names and false if the orgIDs are Organization keys.

Returns:

OrganizationManagerBulkResult containing operation result for all organizations.

Throws:

OrganizationStatusChangeException - If the Organizations can not be enabled due to some internal reason.

NoSuchOrganizationException - If atleast one of the Organization specified in the orgIDs list does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

disable

OrganizationManagerBulkResult disable(java.util.Set orgIDs,
                                      boolean isOrgName)
                                      throws OrganizationStatusChangeException,
                                             NoSuchOrganizationException,
                                             oracle.iam.platform.authz.exception.AccessDeniedException

Disables existing Organizations in bulk.

Parameters:

orgIDs - The ids of the Organizations to be disabled. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if orgIDs contains Organization names and false if the orgIDs are Organization keys.

Returns:

OrganizationManagerBulkResult containing operation result for all Organizations.

Throws:

OrganizationStatusChangeException - If the Organizations can not be disabled due to some internal reason.

NoSuchOrganizationException - If atleast one of the Organization specified in the orgIDs list does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

delete

OrganizationManagerBulkResult delete(java.util.Set orgIDs,
                                     boolean isOrgName)
                                     throws OrganizationStatusChangeException,
                                            NoSuchOrganizationException,
                                            oracle.iam.platform.authz.exception.AccessDeniedException

Deletes existing Organizations in bulk. This is a soft delete and doesn't remove the Organizations from the data store. It just marks the Organization entities as 'deleted'.

Parameters:

orgIDs - The ids of the Organizations to be deleted. The isOrgName flag determines what does orgID represent.

isOrgName - Set to true, if orgIDs contains Organization names and false if the orgIDs are Organization keys.

Returns:

OrganizationManagerBulkResult containing operation result for all Organizations.

Throws:

OrganizationStatusChangeException - If the Organizations can not be deleted due to some internal reason.

NoSuchOrganizationException - If atleast one of the Organization specified in the orgIDs list does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

delete

OrganizationManagerBulkResult delete(java.util.Set orgIDs,
                                     java.util.Map controlParams)
                                     throws OrganizationStatusChangeException,
                                            NoSuchOrganizationException,
                                            oracle.iam.platform.authz.exception.AccessDeniedException

Deletes existing Organizations in bulk. This is a soft delete and doesn't remove the Organizations from the data store. It just marks the Organization entities as 'deleted'.

Parameters:

orgIDs - The ids of the Organizations to be deleted.

controlParams - Parameters to control the method logic. Currently may contain the following: If 'isOrgName' flag is set to true, if the orgID contains Organization name and false if the orgID is Organization key. If 'ignoreOrphanedPublishedEntities' flag is set to true if org should be deleted even if deletion will result in orphaned published entities and false if an exception should be thrown if there are orphaned published entities.

Returns:

OrganizationManagerBulkResult containing operation result for all Organizations.

Throws:

OrganizationStatusChangeException - If the Organizations can not be deleted due to some internal reason.

NoSuchOrganizationException - If atleast one of the Organization specified in the orgIDs list does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

setUserMembershipRule

java.lang.String setUserMembershipRule(java.lang.String orgKey,
                                       SearchRule userMembershipRule)
                                       throws OrganizationManagerException,
                                              oracle.iam.platform.authz.exception.AccessDeniedException,
                                              oracle.iam.platform.entitymgr.UnsupportedOperationException

Sets the value of act_user_membership_rule attribute of the specified organization.

Parameters:

orgKey - The id of the Organization

userMembershipRule - The membership rule

Returns:

Status of the operation.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

oracle.iam.platform.entitymgr.UnsupportedOperationException

getUserMembershipRule

SearchRule getUserMembershipRule(java.lang.String orgKey)
                                 throws OrganizationManagerException,
                                        oracle.iam.platform.authz.exception.AccessDeniedException

Gets the value of act_user_membership_rule attribute of the specified organization.

Parameters:

orgKey - The id of the Organization

Returns:

The membership rule.

Throws:

OrganizationManagerException - If operation fails.

oracle.iam.platform.authz.exception.AccessDeniedException - If the logged-in user does not have the required authorization.

isUserMemberOf

boolean isUserMemberOf(java.lang.String orgKey,
                       java.lang.String userKey)
                       throws OrganizationManagerException,
                              oracle.iam.platform.authz.exception.AccessDeniedException

Returns true if user identified by userKey is a member of the organization identified by orgKey.

Parameters:

orgKey - The id of the Organization

userKey - The id of the user.

Returns:

boolean true if user is a member, false if not.

Throws:

OrganizationManagerException - If user or organization does not exist.

oracle.iam.platform.authz.exception.AccessDeniedException

getOrganizationMembers

java.util.List getOrganizationMembers(java.lang.String orgKey,
                                      java.util.Set retAttrs,
                                      SearchCriteria sc,
                                      java.util.Map configParams)
                                      throws OrganizationManagerException,
                                             oracle.iam.platform.authz.exception.AccessDeniedException

Returns list of User members of the Organization identified by orgkey.

Parameters:

orgKey - The id of the Organization

retAttrs - Names of User attributes to be returned

Returns:

List of direct, non-deleted User members

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

getUserMemberships

java.util.List getUserMemberships(java.lang.String userKey,
                                  java.util.Set retAttrs,
                                  SearchCriteria sc,
                                  java.util.Map configParams)
                                  throws OrganizationManagerException,
                                         oracle.iam.platform.authz.exception.AccessDeniedException

Returns list of Organizations of which the User identified by userKey is a member.

Parameters:

userKey - The id of the User

retAttrs - Names of Organization attributes to be returned

Returns:

List of Organizations of which the User is a member.

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

previewDynamicUserMembership

java.util.List previewDynamicUserMembership(java.lang.String orgKey,
                                            SearchRule userMembershipRule,
                                            java.util.Set retAttrs,
                                            java.util.Map configParam)
                                            throws OrganizationManagerException,
                                                   oracle.iam.platform.authz.exception.AccessDeniedException,
                                                   oracle.iam.platform.entitymgr.UnsupportedOperationException

Returns list of User members computed by the membership rule.

Parameters:

orgKey - Key of the organization for which memberships are being previewed.

userMembershipRule - The dynamic membership rule to be evaluated.

Returns:

List of User members

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

oracle.iam.platform.entitymgr.UnsupportedOperationException

getChildOrganizations

java.util.List getChildOrganizations(java.lang.String orgKey,
                                     java.util.Set retAttrs,
                                     java.util.Map configParams)
                                     throws OrganizationManagerException,
                                            oracle.iam.platform.authz.exception.AccessDeniedException

Returns list of children of the Organization identified by orgKey.

Parameters:

orgKey - The parent organization key.

retAttrs - Names of Organization attributes to be returned.

configParams - Sorting and paging parameters.

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

setUdfInMds

void setUdfInMds()

getAvailableRolesRule

SearchRule getAvailableRolesRule(java.lang.String orgKey)
                                 throws OrganizationManagerException,
                                        oracle.iam.platform.authz.exception.AccessDeniedException

Returns available roles search rule, including search base, search depth and search filter

Parameters:

orgKey - The organization key.

Returns:

Available roles search rule, including search base, search depth and search filter.

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

setAvailableRolesRule

java.lang.String setAvailableRolesRule(java.lang.String orgKey,
                                       SearchRule searchRule)
                                       throws OrganizationManagerException,
                                              oracle.iam.platform.authz.exception.AccessDeniedException

Sets SearchRule as serialized string in db including search base, search depth and search filter.

Parameters:

orgKey - The organization key.

searchRule -

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

getOrganizationsRoleIsAvailableTo

java.util.List getOrganizationsRoleIsAvailableTo(java.lang.String roleKey,
                                                 SearchCriteria sc,
                                                 java.util.Set retAttrs,
                                                 java.util.Map configParams)
                                                 throws OrganizationManagerException,
                                                        oracle.iam.platform.authz.exception.AccessDeniedException

Returns orgs role is statically and dynamically available to

Parameters:

roleKey - The Role key.

sc -

retAttrs -

configParams -

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

getRolesAvailableToOrganization

java.util.List getRolesAvailableToOrganization(java.lang.String orgKey,
                                               SearchCriteria sc,
                                               java.util.Set retAttrs,
                                               java.util.Map configParams)
                                               throws OrganizationManagerException,
                                                      oracle.iam.platform.authz.exception.AccessDeniedException

returns static and dynamic available roles

Parameters:

orgKey - The organization key.

sc -

retAttrs -

configParams -

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

previewDynamicAvailableRoles

java.util.List previewDynamicAvailableRoles(java.lang.String orgKey,
                                            SearchRule searchRule,
                                            java.util.Set retAttrs,
                                            java.util.Map configParams)
                                            throws OrganizationManagerException,
                                                   oracle.iam.platform.authz.exception.AccessDeniedException

Evaluates and executes search rule to show preview of potential available roles.

Parameters:

orgKey - Key of the Organization for which available roles are being previewed.

searchRule -

retAttrs -

configParams -

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

isRoleAvailableTo

boolean isRoleAvailableTo(java.lang.String orgKey,
                          java.lang.String roleKey)
                          throws OrganizationManagerException,
                                 oracle.iam.platform.authz.exception.AccessDeniedException

Returns true if role is available to (statically or dynamically) to specified org

Parameters:

orgKey - The organization key.

roleKey - The role key.

Returns:

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

isRoleDynamicallyAvailableTo

boolean isRoleDynamicallyAvailableTo(java.lang.String orgKey,
                                     java.lang.String roleKey)
                                     throws OrganizationManagerException,
                                            oracle.iam.platform.authz.exception.AccessDeniedException

Returns true if role is dynamically available to specified org

Parameters:

orgKey - The organization key.

roleKey - The role key.

Returns:

returns true if role is dynamically available to specified org.

Throws:

OrganizationManagerException

oracle.iam.platform.authz.exception.AccessDeniedException

Skip navigation links