managed.json revision c14476fa85ea43c887344cd656264cd70eb7a2a8
{
"objects" : [
{
"name" : "user",
"onValidate" : {
"type" : "groovy",
"file" : "script/storeFields.groovy",
"storedFields" : [
"ldapPassword"
]
},
"onCreate" : {
"type" : "text/javascript",
"file" : "script/onCreate-user-custom.js",
"historyFields" : [
"ldapPassword",
"ldap2Password"
],
"historySize" : 4
},
"onUpdate" : {
"type" : "text/javascript",
"file" : "script/onUpdate-user-custom.js",
"historyFields" : [
"ldapPassword",
"ldap2Password"
],
"historySize" : 4
},
"onDelete" : {
"type" : "text/javascript",
"file" : "ui/onDelete-user-cleanup.js"
},
"schema" : {
"id" : "http://jsonschema.net",
"title" : "User",
"viewable" : true,
"$schema" : "http://json-schema.org/draft-03/schema",
"order" : [
"_id",
"password",
"kbaInfo",
"userName",
"password",
"givenName",
"sn",
"mail",
"accountStatus",
"telephoneNumber",
"postalAddress",
"address2",
"city",
"postalCode",
"country",
"stateProvince",
"roles",
"manager",
"authzRoles",
"reports",
"effectiveRoles",
"effectiveAssignments"
],
"properties" : {
"_id" : {
"type" : "string",
"viewable" : false,
"searchable" : false,
"userEditable" : false,
"policies" : [
{
"policyId" : "cannot-contain-characters",
"params" : {
"forbiddenChars" : [
"/"
]
}
}
]
},
"password" : {
"title" : "Password",
"type" : "string",
"viewable" : false,
"searchable" : false,
"minLength" : 8,
"userEditable" : true,
"encryption" : {
"key" : "openidm-sym-default"
},
"scope" : "private",
"policies" : [
{
"policyId" : "at-least-X-capitals",
"params" : {
"numCaps" : 1
}
},
{
"policyId" : "at-least-X-numbers",
"params" : {
"numNums" : 1
}
},
{
"policyId" : "cannot-contain-others",
"params" : {
"disallowedFields" : [
"userName",
"givenName",
"sn"
]
}
},
{
"policyId" : "re-auth-required",
"params" : {
"exceptRoles" : [
"system",
"openidm-admin",
"openidm-reg",
"openidm-cert"
]
}
}
]
},
"securityAnswer" : {
"type" : "string",
"viewable" : false,
"searchable" : false,
"userEditable" : true,
"encryption" : {
"key" : "openidm-sym-default"
},
"scope" : "private"
},
"ldapPassword" : {
"title" : "Password",
"type" : "string",
"viewable" : false,
"searchable" : false,
"minLength" : 8,
"userEditable" : true,
"secureHash" : {
"algorithm" : "SHA-256"
},
"policies" : [
{
"policyId" : "at-least-X-capitals",
"params" : {
"numCaps" : 2
}
},
{
"policyId" : "at-least-X-numbers",
"params" : {
"numNums" : 1
}
},
{
"policyId" : "cannot-contain-others",
"params" : {
"disallowedFields" : [
"userName",
"givenName",
"sn"
]
}
},
{
"policyId" : "re-auth-required",
"params" : {
"exceptRoles" : [
"system",
"openidm-admin",
"openidm-reg",
"openidm-cert"
]
}
},
{
"policyId" : "is-new",
"params" : {
"historyLength" : 2
}
}
]
},
"ldap2Password" : {
"title" : "Password",
"type" : "string",
"viewable" : false,
"searchable" : false,
"minLength" : 8,
"userEditable" : true,
"encryption" : {
"key" : "openidm-sym-default"
},
"policies" : [
{
"policyId" : "at-least-X-capitals",
"params" : {
"numCaps" : 1
}
},
{
"policyId" : "at-least-X-numbers",
"params" : {
"numNums" : 2
}
},
{
"policyId" : "cannot-contain-others",
"params" : {
"disallowedFields" : [
"userName",
"givenName",
"sn"
]
}
},
{
"policyId" : "re-auth-required",
"params" : {
"exceptRoles" : [
"system",
"openidm-admin",
"openidm-reg",
"openidm-cert"
]
}
},
{
"policyId" : "is-new",
"params" : {
"historyLength" : 4
}
}
]
},
"fieldHistory" : {
"title" : "Field History",
"type" : "object",
"viewable" : false,
"searchable" : false,
"minLength" : 8,
"userEditable" : true
},
"kbaInfo" : {
"type" : "array",
"userEditable" : true,
"items" : {
"type" : "object",
"properties" : {
"answer" : {
"type" : "string"
},
"customQuestion" : {
"type" : "string"
},
"questionId" : {
"type" : "string"
}
}
}
},
"mail" : {
"title" : "Email Address",
"viewable" : true,
"type" : "string",
"searchable" : true,
"userEditable" : true,
"pattern" : ".+@.+"
},
"sn" : {
"title" : "Last Name",
"viewable" : true,
"type" : "string",
"searchable" : true,
"userEditable" : true
},
"address2" : {
"type" : "string",
"title" : "Address 2",
"viewable" : true,
"userEditable" : true
},
"givenName" : {
"title" : "First Name",
"viewable" : true,
"type" : "string",
"searchable" : true,
"userEditable" : true
},
"city" : {
"type" : "string",
"title" : "City",
"viewable" : true,
"userEditable" : true
},
"country" : {
"type" : "string",
"title" : "Country",
"viewable" : true,
"userEditable" : true
},
"postalCode" : {
"type" : "string",
"title" : "Postal Code",
"viewable" : true,
"userEditable" : true
},
"accountStatus" : {
"title" : "Status",
"viewable" : true,
"type" : "string",
"searchable" : true,
"userEditable" : false
},
"roles" : {
"description" : "",
"title" : "Provisioning Roles",
"viewable" : true,
"userEditable" : false,
"returnByDefault" : true,
"type" : "array",
"validate" : false,
"items" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "members",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/role",
"query" : {
"queryFilter" : "true",
"fields" : [
"name"
],
"sortKeys" : [
"name"
]
}
}
]
}
},
"authzRoles" : {
"description" : "",
"title" : "Authorization Roles",
"viewable" : true,
"type" : "array",
"userEditable" : false,
"returnByDefault" : false,
"items" : {
"type" : "relationship",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "repo/internal/role",
"query" : {
"queryFilter" : "true",
"fields" : [
"_id",
"description"
],
"sortKeys" : [
"_id"
]
}
},
{
"path" : "managed/role",
"query" : {
"queryFilter" : "true",
"fields" : [
"name"
],
"sortKeys" : [
"name"
]
}
}
]
}
},
"reports" : {
"description" : "",
"title" : "Reports",
"viewable" : true,
"userEditable" : false,
"type" : "array",
"returnByDefault" : false,
"validate" : false,
"items" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "manager",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/user",
"query" : {
"queryFilter" : "true",
"fields" : [
"userName",
"givenName",
"sn"
],
"sortKeys" : [
"userName"
]
}
}
]
}
},
"effectiveRoles" : {
"type" : "array",
"title" : "Effective Roles",
"viewable" : false,
"returnByDefault" : true,
"isVirtual" : true,
"onRetrieve" : {
"type" : "text/javascript",
"file" : "roles/effectiveRoles.js",
"rolesPropName" : "roles"
},
"items" : {
"type" : "object"
}
},
"effectiveAssignments" : {
"type" : "array",
"title" : "Effective Assignments",
"viewable" : false,
"returnByDefault" : true,
"isVirtual" : true,
"onRetrieve" : {
"type" : "text/javascript",
"file" : "roles/effectiveAssignments.js",
"effectiveRolesPropName" : "effectiveRoles"
},
"items" : {
"type" : "object"
}
},
"telephoneNumber" : {
"type" : "string",
"title" : "Mobile Phone",
"viewable" : true,
"userEditable" : true,
"pattern" : "^\\+?([0-9\\- \\(\\)])*$"
},
"stateProvince" : {
"type" : "string",
"title" : "State/Province",
"viewable" : true,
"userEditable" : true
},
"postalAddress" : {
"type" : "string",
"title" : "Address 1",
"viewable" : true,
"userEditable" : true
},
"userName" : {
"title" : "Username",
"viewable" : true,
"type" : "string",
"searchable" : true,
"userEditable" : true,
"minLength" : 1,
"policies" : [
{
"policyId" : "unique"
},
{
"policyId" : "no-internal-user-conflict"
},
{
"policyId" : "cannot-contain-characters",
"params" : {
"forbiddenChars" : [
"/"
]
}
}
]
},
"manager" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "reports",
"description" : "",
"title" : "Manager",
"viewable" : true,
"searchable" : false,
"validate" : false,
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/user",
"query" : {
"queryFilter" : "true",
"fields" : [
"userName",
"givenName",
"sn"
],
"sortKeys" : [
"userName"
]
}
}
],
"userEditable" : false
}
},
"type" : "object",
"required" : [
"userName",
"givenName",
"sn",
"mail"
]
}
},
{
"name" : "role",
"onDelete" : {
"type" : "text/javascript",
"file" : "roles/onDelete-roles.js"
},
"schema" : {
"$schema" : "http://forgerock.org/json-schema#",
"type" : "object",
"title" : "Role",
"description" : "",
"properties" : {
"_id" : {
"description" : "",
"title" : "Name",
"viewable" : false,
"searchable" : false,
"type" : "string"
},
"name" : {
"description" : "The role name, used for display purposes.",
"title" : "Name",
"viewable" : true,
"searchable" : true,
"type" : "string"
},
"description" : {
"description" : "The role description, used for display purposes.",
"title" : "Description",
"viewable" : true,
"searchable" : true,
"type" : "string"
},
"members" : {
"description" : "",
"title" : "Role Members",
"viewable" : true,
"type" : "array",
"returnByDefault" : false,
"validate" : false,
"items" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "roles",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/user",
"label" : "User",
"query" : {
"queryFilter" : "true",
"fields" : [
"userName",
"givenName",
"sn"
],
"sortKeys" : [
"userName"
]
}
}
]
}
},
"assignments" : {
"description" : "",
"title" : "Managed Assignments",
"viewable" : true,
"returnByDefault" : true,
"type" : "array",
"validate" : false,
"items" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "roles",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/assignment",
"query" : {
"queryFilter" : "true",
"fields" : [
"name"
],
"sortKeys" : [
"name"
]
}
}
]
}
}
},
"required" : [
"name",
"description"
],
"order" : [
"_id",
"name",
"description",
"assignments"
]
}
},
{
"name" : "assignment",
"schema" : {
"$schema" : "http://forgerock.org/json-schema#",
"type" : "object",
"title" : "Assignment",
"description" : "A role assignment",
"properties" : {
"_id" : {
"description" : "The assignment ID",
"title" : "Name",
"viewable" : false,
"searchable" : false,
"type" : "string"
},
"name" : {
"description" : "The assignment name, used for display purposes.",
"title" : "Name",
"viewable" : true,
"searchable" : true,
"type" : "string"
},
"description" : {
"description" : "The assignment description, used for display purposes.",
"title" : "Description",
"viewable" : true,
"searchable" : true,
"type" : "string"
},
"mapping" : {
"description" : "The name of the mapping this assignment applies to",
"title" : "Mapping",
"viewable" : true,
"searchable" : true,
"type" : "string"
},
"attributes" : {
"description" : "The attributes operated on by this assignment.",
"title" : "Assignment Attributes",
"viewable" : true,
"type" : "array",
"items" : {
"type" : "object",
"properties" : {
"assignmentOperation" : {
"type" : "string"
},
"unassignmentOperation" : {
"type" : "string"
},
"name" : {
"type" : "string"
},
"value" : {
"type" : "string"
}
}
}
},
"linkQualifiers" : {
"description" : "Conditional link qualifiers to restrict this assignment to.",
"title" : "Link Qualifiers",
"viewable" : true,
"type" : "array",
"items" : {
"type" : "string"
}
},
"roles" : {
"description" : "",
"title" : "Managed Roles",
"viewable" : true,
"userEditable" : false,
"type" : "array",
"returnByDefault" : false,
"validate" : false,
"items" : {
"type" : "relationship",
"reverseRelationship" : true,
"reversePropertyName" : "assignments",
"properties" : {
"_ref" : {
"type" : "string"
},
"_refProperties" : {
"type" : "object",
"properties" : {
"_id" : {
"type" : "string"
}
}
}
},
"resourceCollection" : [
{
"path" : "managed/role",
"query" : {
"queryFilter" : "true",
"fields" : [
"name"
],
"sortKeys" : [
"name"
]
}
}
]
}
}
},
"required" : [
"name",
"description",
"mapping"
],
"order" : [
"_id",
"name",
"description",
"attributes",
"linkQualifiers"
]
}
}
]
}