Specifies the names of locally assigned applications (Resource Groups).
Specifies the names of the approvers that must approve the assignment of this role to a user.
Specifies a rule that returns a list of one or more users who are approvers when this role is assigned and provisioned on a user.
Flattened list of all assigned resources via resources, resource groups, and roles.
Table 3–66 Attributes of assignedResource Attribute (Role View)
Attribute |
Editable? |
Data Type |
---|---|---|
resourceName |
No |
String |
name |
No |
String |
attributes |
No |
Object |
Identifies the name of the assigned resource.
Identifies the resource name or ID (preferably ID).
Identifies the characteristics of the resource. All subattributes are strings and are editable.
Table 3–67 attribute Options (Role View)
Attribute |
Description |
---|---|
name |
Name of resource attribute |
valueType |
Type of value set for this attribute. Allowed values include Rule, text, or none. |
requirement |
Type of value set by this attribute. Allowed values include Default value, Set to value, Merge with Value, Remove from Value, Merge with Value clear existing, Authoritative set to value, Authoritative merge with value, Authoritative merge with value clear existing. |
rule |
Specifies rule name if value type is Rule. |
value |
Specifies value if rule type is Text. |
Lists objects that contain information about each contained role.
Table 3–68 Attributes of containedRoles Attribute (Role View)
Attribute |
Editable? |
Data Type |
---|---|---|
name |
No |
String |
info |
No |
String |
associationType |
Yes |
String |
approvalRequired |
Yes |
Boolean |
condition |
Yes |
Object |
Specifies the role name.
Specifies the following information about the role: description, id, name, noApprovers, and type.
Specifies whether the association is required, conditional, or optional.
If associationType is optional, this is a Boolean flag that indicates whether approval is required when this role is requested by the user.
If associationType is conditional, this is the condition that determines whether this role is assigned to a given user.
Describes this role.
Indicates whether the specified role is disabled. The default value is false.
Identifies the name of the role. This corresponds to the name of a Role object in the Identity Manager repository.
Lists the names of administrators that must approve the assignment of this role to a user.
Specifies a rule that returns a list of one or more users who will be notified when this role is assigned and provisioned on a user.
Lists organizations of which this role is a member.
Lists one or more users who are specified as approvers for changes to this role.
Specifies a rule that returns a list of one or more users who are approvers for changes to this role.
Identifies the user-defined properties that are stored on this role.
Specifies the names of locally assigned resources.
Specifies the names of locally assigned roles.
Identifies this role’s type as defined in the Role Configuration object.
Cached type information from the Role Configuration object for use by the view (read-only).