Page History

...

Tables

Info

title	Additional Columns

In addition to the column definitions available for each table below, all tables have additional columns used by the framework and supporting code. These columns include

Timestamps managed by Cake (created, modified)
Columns used in support of Changelog Behavior

Info

title	Status

The statuses for each table are defined as

Stable: The table definition will not change in a backwards-incompatible manner across minor releases. Stable tables may only be removed in major releases.
Tentative: The table definition will likely become stable, but may change in a backwards-incompatible manner across minor and patch releases. Tentative tables may be refactored or removed without notice.
Experimental: No specific assertion is made about the stability of the table. It may be changed significantly or even removed without notice.
Obsolete: The table is no longer in use as of the specified version.
Not Implemented: The table definition is for planning purposes only.

Major, minor, and patch releases are as defined in semantic versioning.

Registry is a database oriented application, with quite a few tables under the hood. These tables fall into a few broad categories:

Primary Objects: Primary objects are those that directly relate to the primary purpose of Registry: storing information about people and other entities related to the organization. Example include CO Person and CO Departments.
Secondary Objects: Secondary objects store additional information about Primary objects, in particular when there is a many-to-one relationship. Examples include Name and Email Address.
Configuration Objects: Configuration objects primarily relate to the behavior of the application.

Table Metadata

In addition to the column definitions available for each table below, all tables have additional columns used by the framework and supporting code. These columns include

Timestamps managed by Cake (created, modified)
Columns used in support of Changelog Behavior

Table Status

The statuses for each table are defined as

Stable: The table definition will not change in a backwards-incompatible manner across minor releases. Stable tables may only be removed in major releases.
Tentative: The table definition will likely become stable, but may change in a backwards-incompatible manner across minor and patch releases. Tentative tables may be refactored or removed without notice.
Experimental: No specific assertion is made about the stability of the table. It may be changed significantly or even removed without notice.
Obsolete: The table is no longer in use as of the specified version.
Not Implemented: The table definition is for planning purposes only.

Major, minor, and patch releases are as defined in semantic versioning.

Table Inventory

Table Name	Description	Status	Introduced
cm_ad_hoc_attributes	Ad Hoc Attributes	Tentative	v3.3.0
cm_addresses	Addresses	Stable	v0.2
cm_application_preferences	Application Preferences (frontend state)	Tentative	v4.0.0
cm_authenticator_reset_tokens	Authenticator Reset Tokens	Experimental	v4.1.0
cm_co_announcement_channels	Per-CO Announcement Channels	Tentative	v3.2.0
cm_co_announcements	Per-CO Announcements	Tentative	v3.2.0
cm_co_announcements_widgets	Per-CO Announcements Widgets configuration	Tentative	v3.2.0
cm_api_source_records	API Source Record Cache	Experimental	v3.3.0
cm_api_sources	API Organizational Identity Sources	Experimental	v3.3.0
cm_api_users	API (Programmatic) Users	Tentative	v0.2
cm_applications	Known applications	Not Implemented, replaced by co_services
cm_attribute_enumerations	Attribute enumerations (per-CO or platform wide)	Tentative	v2.0.0
cm_authentication_events	Registry authentication events	Tentative	v2.0.0
cm_authenticator_statuses	Authenticator Statuses	Tentative	v3.1.0
cm_authenticators	Authenticators	Tentative	v3.1.0
cm_certificate_authenticators	Certificate Authenticators	Experimental	v3.1.0
cm_certificates	Certificates	Experimental	v3.1.0
cm_clusters	Clusters	Tentative	v3.3.0
cm_cmp_enrollment_attributes	CMP enrollment attribute configuration	Tentative	v0.3
cm_cmp_enrollment_configurations	CMP enrollment configuration	Tentative	v0.3
cm_co_applications	Per-CO configured applications	Not Implemented
cm_co_changelog_provisioner_exports		Obsolete as of v0.8.2	v0.8
cm_co_changelog_provisioner_targets	Per-CO Changelog provisioning target configurations	Tentative	v0.8
cm_co_crowd_provisioner_targets	Per-CO Crowd provisioning target configurations	Tentative	v3.2.0
cm_co_dashboard_widgets	Per-CO Dashboard Widgets	Tentative	v3.2.0
cm_co_dashboards	Per-CO Dashboards	Tentative	v3.2.0
cm_co_departments	Per-CO departments	Tentative	v3.1.0
cm_co_directory_permissions	Per-CO restrictions on publishing of directory information	Not Implemented
cm_co_email_address_widgets	Per-CO Email Address Widgets configuration	Experimental	v4.1.0
cm_co_email_lists	Per-CO email lists	Tentative	v3.1.0
cm_co_enrollment_attributes	Per-CO enrollment flow attribute configurations	Stable	v0.3
cm_co_enrollment_attribute_defaults	Default values for CO enrollment flow attributes configuration	Stable	v0.8.1
cm_co_enrollment_authenticators	Authenticators attached to Enrollment Flows	Experimental	v3.3.0
cm_co_enrollment_clusters	Clusters attached to Enrollment Flows	Tentative	v3.3.0
cm_co_enrollment_flow_wedges	Enroller Plugins attached to Enrollment Flows	Tentative	v4.0.0
cm_co_enrollment_flows	Per-CO enrollment flow configurations	Stable	v0.3
cm_co_enrollment_sources	Organizational Identity Sources attached to Enrollment Flows	Experimental	v2.0.0
cm_co_expiration_counts	Per-CO expiration counts	Tentative	v2.0.0
cm_co_expiration_policies	Per-CO expiration policies	Stable	v0.9.2
cm_co_extended_attributes	Per-CO extended attributes	Stable	v0.3
cm_co_extended_types	Per-CO attribute type configurations	Stable	v0.6
cm_co_fifer_servers	Per-CO FIFER services	Not Implemented
cm_co_github_provisioner_targets	Per-CO GitHub provisioning target configurations	Tentative	v0.9.1
cm_co_grouper_provisioner_groups	Per-CO per-Grouper target Grouper group map	Tentative	v0.8.3
cm_co_grouper_provisioner_targets	Per-CO Grouper provisioning target configurations	Tentative	v0.8.3
cm_co_groups	Per-CO groups	Stable	v0.2
cm_co_group_members	Per-CO group memberships	Stable	v0.2
cm_co_group_nestings	Per-CO group nestings	Tentative	v3.3.0
cm_co_group_ois_mappings	Per-CO mappings from OIS records to group memberships	Tentative	v2.0.0
cm_co_homedir_provisioner_targets	Per-CO Home Directory provisioning target configurations	Experimental	v0.9
cm_co_identifier_assignments	Per-CO rules for identifier assignment	Stable	v0.6
cm_co_identifier_validators	Per-CO identifier validators	Tentative	v2.0.0
cm_co_invites	Per-CO invitations to join	Tentative	v0.1
cm_co_jira_provisioner_targets	Per-CO Jira provisioning target configurations	Tentative	v4.0.0
cm_co_job_history_records	Per-CO Job History Records	Tentative	v2.0.0
cm_co_jobs	Per-CO Job Records	Tentative	v2.0.0
cm_co_ldap_provisioner_attr_groupings	Per-CO per-LDAP target attribute grouping definitions	Stable	v0.8
cm_co_ldap_provisioner_attributes	Per-CO per-LDAP target attribute definitions	Stable	v0.8
cm_co_ldap_provisioner_dns	Per-CO per-LDAP target DN map	Stable	v0.8
cm_co_ldap_provisioner_targets	Per-CO LDAP provisioning target configurations	Stable	v0.8
cm_co_ldap_service_token_provisioner_targets	Per-CO Per-LDAP target service token provisioning configurations	Experimental	v2.0.0
cm_co_localizations	Per-CO Text Localizations	Stable	v0.8.3
cm_co_mailman_lists	Per-CO Mailman Lists	Tentative	v3.1.0
cm_co_mailman_provisioner_targets	Per-CO Mailman provisioning target configurations	Tentative	v3.1.0
cm_co_message_templates	Per-CO Message Templates	Tentative	v2.0.0
cm_co_mid_point_provisioner_targets	Per-CO MidPoint provisioning target configuration	Experimental	V3.3.0
cm_co_name_identifier_assignments	Per-Identifier tracking of assigned name-based sequences	Obsolete
cm_co_navigation_links	Per-CO Navigation Links	Stable	v0.8.2
cm_co_notifications_widgets	Per-CO Notifications Widgets configuration	Tentative	v3.2.0
cm_co_notifications	Per-CO Notifications	Stable	v0.8.4
cm_co_nsf_demographics	Demographics for statistics	Stable	v0.3
cm_co_org_identity_links	Per-CO link to org identity	Stable	v0.3
cm_co_people	Per-CO person identity	Stable	v0.2
cm_co_person_roles	Per-CO person role identity	Stable	v0.3
cm_co_person_sources	Per-CO link from person to org person	Obsolete as of v0.3	v0.2
cm_co_petition_attributes	Per-CO enrollment petition attributes	Stable	v0.3
cm_co_petition_history_records	Per-CO enrollment petition history records	Stable	v0.3
cm_co_petitions	Per-CO enrollment petitions	Stable	v0.3
cm_co_pipelines	Per-CO pipelines

Table Name

Description

Status

Introduced

cm_addresses

Addresses

Stable

v0.2

cm_api_users

API (Programmatic) Users

Tentative

v0.2

cm_applications

Known applications

Not Implemented, replaced by co_services

cm_attribute_enumerationsAttribute enumerations (per-CO or platform wide)Tentativev2.0.0cm_authentication_eventsRegistry authentication events

	Tentative	v2.0.0
cm_co_

authenticator_statusesAuthenticator StatusesTentative

provisioning_counts

Per-provisioning target job execution counts

Stable

v4.3

v3.1

.0

cm

_authenticators AuthenticatorsTentativev3.1.0cm_certificate_authenticatorsCertificate AuthenticatorsExperimentalv3.1.0cm_certificatesCertificatesExperimentalv3.1.0

cm_cmp_enrollment_attributes

CMP enrollment attribute configuration

Tentative

v0.3

cm_cmp_enrollment_configurations

CMP enrollment configuration

Tentative

v0.3

cm_co_applications

Per-CO configured applications

Not Implemented

cm_co_changelog_provisioner_exportsObsolete as of v0.8.2v0.8

cm_co_changelog_provisioner_targets

Per-CO Changelog provisioning target configurations

Tentative

v0.8cm_co_departmentsPer-CO departmentsTentativev3.1.0

cm_co_directory_permissions

Per-CO restrictions on publishing of directory information

_co_provisioning_exports	Per-CO provisioning target export record	Stable	v0.8.2
cm_co_provisioning_queued_events	Per-CO provisioning events to process	Not Implemented, replaced by cm_co_jobs	v0.8
cm_co_provisioning_target_filters	Data Filters attached to CO Provisioning Targets	Tentative	v3.3.0
cm_co_provisioning_targets	Per-CO provisioning targets	Stable	v0.8
cm_co_recovery_widgets	Per-CO Recovery Widgets configuration	Experimental	v4.1.0
cm_co_role_assignments	Per-CO person role assignments	Not Implemented
cm_co_role_groups	Per-CO group memberships implied by role	Not implemented
cm_co_roles	Per-CO role definitions	Not Implemented
cm_co_

email

salesforce_provisioner_

lists

targets

Per-CO

email lists

Salesforce provisioning target configurations

Tentative

v3.

1

2.0

cm_co_

enrollment

self_service_

attributes

Per-CO enrollment flow attribute configurations

permissions

Stable

v0.

3

9

cm_co_

enrollment

sequential_

attribute

identifier_

defaultsDefault values for CO enrollment flow attributes configuration

assignments

Per-Identifier tracking of next values for sequentially assigned identifiers

Stable

v0.

8.1

6

cm_co_

enrollment

service_token_

flows

settings

Per-CO

enrollment flow configurations

service token settings

Obsolete as of v3.3.0

v2.0.0

Stable

v0.3

cm_co_

enrollment

service_

sourcesOrganizational Identity Sources attached to Enrollment Flows

tokens

Per-CO service tokens

Obsolete as of v3.3.0

Experimental

	v2.0.0
cm_co_

expiration_counts

services

Per-CO

expiration counts

Services	Tentative	v2.0.0
cm_co_

expiration_policies

settings

Per-CO

expiration policies

Settings

Stable

v0.9.

2

1

cm_co_sql_

extended

provisioner_

attributes

targets

Per-CO

extended attributes

SQL provisioning target configurations

Tentative

v3

Stable

v0

.3.0

cm_co_t_and_

extended

c_

types

agreements

Per-CO

attribute type configurations

Person agreements to terms and conditions

Stable

v0.8.

6

3

cm_co_terms_

fifer

and_

servers

conditions

Per-CO

FIFER services

terms and conditions

Stable

v0.8.3

Not Implemented

cm_co_

github_provisioner_targets

themes

Per-CO

GitHub provisioning target configurations

themes

Tentative

v0

v2.

9

0.

1

0

cm_co_

grouper

url_

provisioner_groups

widgets

Per-CO

per-Grouper target Grouper group map

URL Widgets configuration

Tentative

v0

v3.

8

2.

3

0

cm_

co_grouper_provisioner_targetsPer-CO Grouper provisioning target configurations

configuration	COordinate configuration values	Obsolete
cm_core_apis	Core APIs	Tentative

v0

v4.

8

0.

3

0

cm_

co_groups

cos	Definitions of (virtual) organizations

Per-CO groups

Stable

v0.

2

cm_co_group_members

Per-CO group memberships

2
cm_cous	Definitions of (virtual) organization units	Stable	v0.

2

3

cm_

co_group_ois_mappingsPer-CO mappings from OIS records to group memberships

data_filters

Data Filters

Tentative

v2

v3.

0

3.0

co

homedir

provisioner

targets

Per-CO

Home Directory provisioning target configurations

Data Scrubber Filter Attributes

Tentative

v4.1.0

Experimental

v0.9

co

identifier

assignments

Per-CO

rules for identifier assignment

Data Scrubber Filters	Tentative	v4.1.0
cm_dictionaries	Dictionaries	Tentative	v4.0.0
cm_dictionary_entries	Dictionary Entries	Tentative	v4

Stable

v0.6cm_co_identifier_validatorsPer-CO identifier validatorsTentativev2

.0.0

cm_

co

dictionary_identifier_

invitesPer-CO invitations to join

validators

Dictionary Identifier Validator configurations

Tentative

v0

v4.0.

1

0

cm_

co_job_history_recordsPer-CO Job History RecordsTentative

dictionary_vetters

Dictionary Vetters

Experimental

v4.1

v2.0

.0

cm_elector_

co

data_filter_

jobs

precedences

Per-CO

Job Records

Elector Data Filter Precedence Rules

Experimental

v4.1

Tentativev2.0

.0

cm_

co

elector_

ldap_provisioner_attr_groupings

data_filters

Per-CO

per-LDAP target attribute grouping definitions

Elector Data Filters

Experimental

v4.1.0

Stable

v0.8

cm_

co

email_

ldap

address_

provisioner_attributesPer-CO per-LDAP target attribute definitions

widget_verifications	Email Address Self Service Dashboard Widget Verifications	Experimental	v4.1.0
cm_email_addresses	Email Addresses	Stable	v0.

8

2

cm_

co_ldap_provisioner_dns

Per-CO per-LDAP target DN map

Stable

v0.8

cm_co_ldap_provisioner_targets

Per-CO LDAP provisioning target configurations

Stable

v0.8cm_co_ldap_service_token_provisioner_targetsPer-CO Per-LDAP target service token provisioning configurationsExperimental

env_sources	Env Organizational Identity Sources	Experimental	v3.1.0
cm_file_sources	File Organizational Identity Sources	Experimental	v2.0.0
cm_group_filter_rules	Group Filter Rules	Experimental	v3.3

v2.0

.0

cm_

co

group_

localizations

Per-CO Text Localizations

Stable

filters

Group Filters

Tentative

v3.3.0

v0.8.3

cm_

co

group_

mailman

name_

listsPer-CO Mailman Lists

filters

Group Name Filters

Tentative

v3.

1

3.0

cm_

co_mailman_provisioner_targetsPer-CO Mailman provisioning target configurations

history_records	Transaction history (human readable)	Stable	v0.7
cm_http_servers	HTTP Servers	Tentative	v3.

1

2.0

cm_

co

identifier_

message

enroller_

templatesPer-CO Message TemplatesTentative

identifiers

Identifiers to be collected by an Identifier Enroller

Experimental

v4

v2

.0.0

_co

name_

assignments

Per-Identifier tracking of assigned name-based sequences

Identifier Enrollers

Experimental

v4.0.0

Obsolete

cm_

co_navigation_linksPer-CO Navigation Links

identifiers

Person identifiers, from organizational source

Stable

v0

.8

.2

cm_

co

identity_

notifications

Per-CO Notifications

Stable

documents

Identity Documents

Tentative

v4.0.0

v0.8.4

cm_

co

kafka_

nsf_demographics

Demographics for statistics

Stable

servers

Kafka Servers

Experimental

v4.0.0

v0.3

cm_

co

ldap_

org

identifier_

identity_links

Per-CO link to org identity

Stable

validators

LDAP Identifier Validator configurations

Tentative

v2.0.0

v0.3

cm_

co

ldap_

people

Per-CO person identity

Stable

servers

LDAP Servers

Tentative

v3.2.0

v0.2

cm_

co

ldap_

person_roles

Per-CO person role identity

Stable

v0.3

cm_co_person_sources

Per-CO link from person to org person

Obsolete as of v0.3

v0.2

cm_co_petition_attributes

Per-CO enrollment petition attributes

Stable

v0.3

cm_co_petition_history_records

Per-CO enrollment petition history records

Stable

v0.3

cm_co_petitions

Per-CO enrollment petitions

Stable

v0.3cm_co_pipelinesPer-CO pipelinesTentativev2.0.0

cm_co_provisioning_exports

Per-CO provisioning target export record

Stable

v0.8.2

cm_co_provisioning_queued_events

Per-CO provisioning events to process

Not Implemented, replaced by cm_co_jobs

v0.8

cm_co_provisioning_targets

Per-CO provisioning targets

Stable

v0.8

cm_co_role_assignments

Per-CO person role assignments

Not Implemented

cm_co_role_groups

Per-CO group memberships implied by role

Not implemented

sources	LDAP Organizational Identity Sources	Experimental	v2.0.0
cm_locks	Process Locks	Tentative	v3.3.0
cm_match_server_attributes	ID Match Server Attributes	Tentative	v4.0.0
cm_match_servers	ID Match Servers	Tentative	v3.3.0
cm_meem_enrollers	MEEM Enrollers	Experimental	v4.0.0
cm_meem_mfa_statuses	MEEM MFA Status	Experimental	v4.0.0
cm_meta	Meta (platform) information	Tentative	v0.9.4
cm_names	Names	Stable	v0.2
cm_namespace_assigner_settings	Namespace Assigner Settings	Experimental	v4.1.0
cm_nationality_enrollers	Nationality Enrollers	Tentative	v4.0.0
cm_navigation_links	Navigation Links	Stable	v0.8.2
cm_net_forum_sources	netFORUM Organizational Identity Sources	Experimental	v2.0.0
cm_novi_sources	Novi AMS Organizational Identity Sources	Experimental	v4.1.0
cm_oauth2_servers	OAuth2 Servers	Tentative	v3.2.0
cm_orcid_sources	ORCID Organizational Identity Sources	Tentative as of v3.2.0	v2.0.0
cm_org_identities	Person identity, from organizational source	Stable	v0.3
cm_org_identity_source_filters	Data Filters attached to Organizational Identity Sources	Experimental	v4.1.0
cm_org_identity_source_records	Cached records from external org identity sources	Experimental

cm_co_roles

Per-CO role definitions

Not Implemented

cm_co_self_service_permissions

Per-CO self service permissions

Stable

v0.9

cm_co_sequential_identifier_assignments

Per-Identifier tracking of next values for sequentially assigned identifiers

Stable

v0.6cm_co_service_token_settingsPer-CO service token settingsExperimentalv2.0.0cm_co_service_tokensPer-CO service tokensExperimentalv2.0.0cm_co_servicesPer-CO ServicesTentative

	v2.0.0
cm_

co

org_identity_

settings

Per-CO Settings

Stable

v0.9.1

cm_co_tandc_agreements

Per-CO Person agreements to terms and conditions

Stable

v0.8.3

cm_co_terms_and_conditions

Per-CO terms and conditions

Stable

v0.8.3cm_co_themesPer-CO themesTentativev2.0.0

cm_configuration

COordinate configuration values

Obsolete

sources	External sources of organizational identities	Experimental	v2.0.0
cm_organizations	Definitions of (external) organizations	Tentative	v4.0.0
cm_organizations (obsolete)	Definitions of (real) organizations	Obsolete as of v2.0.0	v0.2
cm_password_authenticators	Password Authenticators	Experimental	v3.1.0
cm_password_reset_tokens	Password Reset Tokens	Obsolete as of v4.1.0	v4.0.0
cm_passwords	Passwords	Experimental	v3.1.0
cm_permissions	Permissions for COoordinate	Not Implemented
cm_privacy_idea_authenticators	Privacy IDEA Authenticators	Experimental	v4.0.0
cm_regex_identifier_validators	Regex Identifier Validator configurations	Tentative

cm_cos

Definitions of (virtual) organizations

Stable

v0.2

cm_cous

Definitions of (virtual) organization units

Stable

v0.3

cm_email_addresses

Email Addresses

Stable

v0.2cm_env_sourcesEnv Organizational Identity SourcesExperimentalv3.1.0cm_file_sourcesFile Organizational Identity SourcesExperimental

	v2.0.0
cm_

history_records

Transaction history (human readable)

Stable

salesforce_sources

Salesforce Organizational Identity Sources

Experimental

v3.1.0

v0.7

cm_

identifiers

Person identifiers, from organizational source

Stable

servers

Servers

Tentative

v3.2.0

v0.2

cm_

ldap

service_

identifier_validatorsLDAP Identifier Validator configurationsTentative

eligibilities

Service Eligibilities

Experimental

v4.1

v2.0

.0

cm_service_

ldap

eligibility_

sourcesLDAP Organizational Identity Sources

enrollers

Service Eligibility Enrollers

Experimental

v2

v4.

0

1.0

cm_

metaMeta (platform) informationTentativev0.9.4

cm_names

Names

Stable

v0.2

cm_navigation_links

Navigation Links

Stable

v0.8.2cm_net_forum_sourcesnetFORUM

service_eligibility_settings	Service Eligibility Enroller Settings	Experimental	v4.1.0
cm_sponsor_manager_settings	Sponsor Manager Settings	Experimental	v4.1.0
cm_sql_servers	SQL Servers	Tentative	v3.2.0
cm_sql_sources	SQL Organizational Identity Sources	Experimental