|
| Null Driver and Group/User |
 |
Thu, 15 May 2008 15:36:02 GMT |
Hi everyone,
I'm working on a workflow which create some users and should assign
them some groups, but i want the link between users and groups
bidirectionnal.
I mean that i want to have in the User's Group Membership the DN of the
group and in the Group's Member the DN of the user.
I tried to do that with a null driver, i put a policy on the Subscriber
channel command which detects the operation attribute GroupMembership
but i cannot find out what kind of action should i pick to update
another object (in my case, some groups whose DN are in the
GroupMembership operation attribute)...
Thanks,
Sébastien.
--
sjahan
------------------------------------------------------------------------
sjahan's Profile: http://forums.novell.com/member.php?userid=16002
View this thread: http://forums.novell.com/showthread.php?t=328096
|
| Post Reply
|
| Re: Null Driver and Group/User |
 |
Thu, 15 May 2008 16:19:05 GMT |
I would think that you would want the workflow to update both objects
rather than delegate to a null driver.
If you must do it in a driver, then use the Remove Source Attribute
Value / Add Source Attribute Value actions, each in a For Each loop
iteration over the Removed Attribute/Operation Attribute tokens.
Something like:
<rule>
<description>Update Member when Group Membership
changes</description>
<conditions>
<and>
<if-op-attr name="Group Membership"
op="changing"/>
</and>
</conditions>
<actions>
<do-for-each>
<arg-node-set>
<token-removed-attr name="Group Membership"/>
</arg-node-set>
<arg-actions>
<do-remove-src-attr-value class-name="Group"
name="Member">
<arg-dn>
<token-local-variable name="current-node"/>
</arg-dn>
<arg-value type="dn">
<token-src-dn/>
</arg-value>
</do-remove-src-attr-value>
</arg-actions>
</do-for-each>
<do-for-each>
<arg-node-set>
<token-op-attr name="Group Membership"/>
</arg-node-set>
<arg-actions>
<do-add-src-attr-value class-name="Group"
name="Member">
<arg-dn>
<token-local-variable name="current-node"/>
</arg-dn>
<arg-value type="dn">
<token-src-dn/>
</arg-value>
</do-add-src-attr-value>
</arg-actions>
</do-for-each>
</actions>
</rule>
-Father Ramon
sjahan wrote:
> Hi everyone,
>
> I'm working on a workflow which create some users and should assign
> them some groups, but i want the link between users and groups
> bidirectionnal.
> I mean that i want to have in the User's Group Membership the DN of the
> group and in the Group's Member the DN of the user.
>
> I tried to do that with a null driver, i put a policy on the Subscriber
> channel command which detects the operation attribute GroupMembership
> but i cannot find out what kind of action should i pick to update
> another object (in my case, some groups whose DN are in the
> GroupMembership operation attribute)...
>
> Thanks,
> Sébastien.
>
|
| Post Reply
|
| Re: Null Driver and Group/User |
 |
Fri, 16 May 2008 07:46:02 GMT |
Your policy perfectly works, it's exaclty what i needed.
Thanks a lot for your support Father Ramon !
Sébastien.
--
sjahan
------------------------------------------------------------------------
sjahan's Profile: http://forums.novell.com/member.php?userid=16002
View this thread: http://forums.novell.com/showthread.php?t=328096
|
| Post Reply
|
|
|
|
|
|
|
|
|
|