...
Code Block |
---|
import java.util.Set; import edu.internet2.middleware.grouper.FieldType; import edu.internet2.middleware.grouper.Group; import edu.internet2.middleware.grouper.GroupSave; import edu.internet2.middleware.grouper.GrouperSession; import edu.internet2.middleware.grouper.Membership; import edu.internet2.middleware.grouper.MembershipFinder; import edu.internet2.middleware.grouper.SubjectFinderStem; import edu.internet2.middleware.grouper.membership.MembershipType.StemSave; import edu.internet2.middleware.grouper.SubjectFinder; import edu.internet2.middleware.grouper.miscmembership.GrouperStartupMembershipType; import edu.internet2.middleware.grouper.privs.AccessPrivilege; import edu.internet2.middleware.grouper.utilprivs.GrouperUtilNamingPrivilege; import edu.internet2.middleware.grouperClientgrouper.jdbcutil.GcDbAccessGrouperUtil; import edu.internet2.middleware.subject.Subject; //public class Test36revokePrivs { // // // // public static void main(String[] args) { GrouperSession grouperSession = GrouperSession.startRootSession(); String subjectId = "test.subject.0"; String subjectSourceId = "jdbc"; Subject subject = SubjectFinder.findByIdAndSource(subjectId, subjectSourceId, true); // // Group group1 = new GroupSave().assignName("test:test1").assignCreateParentStemsIfNotExist(true).save(); // // Group group2 = new GroupSave().assignName("test:test2").assignCreateParentStemsIfNotExist(true).save(); // // group1.grantPriv(subject, AccessPrivilege.READ); // // group1.grantPriv(subject, AccessPrivilege.UPDATE); // // group2.grantPriv(subject, AccessPrivilege.ADMIN); // // Set<Object[]> membershipsOwnersMembersStem stem1 = new MembershipFinderStemSave().addSubjectassignName(subject"test").assignFieldTypeassignCreateParentStemsIfNotExist(FieldTypetrue).ACCESSsave().; // assignMembershipType(MembershipType.IMMEDIATE).findMembershipResult().getMembershipsOwnersMembers(stem1.grantPriv(subject, NamingPrivilege.CREATE); // stem1.grantPriv(subject, NamingPrivilege.STEM_ATTR_READ); // Stem stem2 = new StemSave().assignName("test:test2").assignCreateParentStemsIfNotExist(true).save(); // stem2.grantPriv(subject, NamingPrivilege.STEM_ADMIN); Set<Object[]> membershipsOwnersMembers = new MembershipFinder().addSubject(subject).assignFieldType(FieldType.ACCESS). assignMembershipType(MembershipType.IMMEDIATE).findMembershipResult().getMembershipsOwnersMembers(); for (Object[] membershipOwnerMember : GrouperUtil.nonNull(membershipsOwnersMembers)) { Membership membership = (Membership)membershipOwnerMember[0]; Group group = (Group)membershipOwnerMember[1]; membership.delete(); System.out.println("Deleted priv from group: " + group.getName() + ": " + membership.getField().getName()); } membershipsOwnersMembers = new MembershipFinder().addSubject(subject).assignFieldType(FieldType.NAMING). assignMembershipType(MembershipType.IMMEDIATE).findMembershipResult().getMembershipsOwnersMembers(); for (Object[] membershipOwnerMember : GrouperUtil.nonNull(membershipsOwnersMembers)) { Membership membership = (Membership)membershipOwnerMember[0]; GroupStem groupstem = (GroupStem)membershipOwnerMember[1]; membership.delete(); System.out.println("Deleted priv from folder: " + groupstem.getName() + ": " + membership.getField().getName()); } // } // } //Deleted priv from group: test:test1: readers //Deleted priv from group: test:test1: updaters //} // DeletedDeleted priv from group: test:test2: admins //Deleted priv from folder: test: stemAttrReaders //Deleted test:test1priv from folder: test: readerscreators // DeletedDeleted priv from folder: test:test1test2: stemAdmins updaters |