...
Code Block |
---|
v2.5.29+ new GrouperPasswordSave().assignApplication(GrouperPassword.Application.UI).assignUsername("username").assignPassword("password").save(); |
Remove all group / folder privs for a user
Code Block |
---|
import java.util.Set; import edu.internet2.middleware.grouper.FieldType; import edu.internet2.middleware.grouper.Group; import edu.internet2.middleware.grouper.GroupSave; import edu.internet2.middleware.grouper.GrouperSession; import edu.internet2.middleware.grouper.Member; import edu.internet2.middleware.grouper.Membership; import edu.internet2.middleware.grouper.MembershipFinder; import edu.internet2.middleware.grouper.Stem; import edu.internet2.middleware.grouper.StemSave; import edu.internet2.middleware.grouper.SubjectFinder; import edu.internet2.middleware.grouper.membership.MembershipType; import edu.internet2.middleware.grouper.privs.AccessPrivilege; import edu.internet2.middleware.grouper.privs.NamingPrivilege; import edu.internet2.middleware.grouper.privs.Privilege; import edu.internet2.middleware.grouper.util.GrouperUtil; import edu.internet2.middleware.subject.Subject; //public class Test36revokePrivs { // // public static void main(String[] args) { GrouperSession grouperSession = GrouperSession.startRootSession(); String subjectId = "test.subject.0"; String subjectSourceId = "jdbc"; Subject subject = SubjectFinder.findByIdAndSource(subjectId, subjectSourceId, true); Group group1 = new GroupSave().assignName("test:test1").assignCreateParentStemsIfNotExist(true).save(); Group group2 = new GroupSave().assignName("test:test2").assignCreateParentStemsIfNotExist(true).save(); group1.delete(); group2.delete(); group1 = new GroupSave().assignName("test:test1").assignCreateParentStemsIfNotExist(true).save(); group2 = new GroupSave().assignName("test:test2").assignCreateParentStemsIfNotExist(true).save(); group1.grantPriv(subject, AccessPrivilege.READ, false); group1.grantPriv(subject, AccessPrivilege.UPDATE, false); group2.grantPriv(subject, AccessPrivilege.ADMIN, false); Stem stem1 = new StemSave().assignName("test1").assignCreateParentStemsIfNotExist(true).save(); stem1.grantPriv(subject, NamingPrivilege.CREATE, false); stem1.grantPriv(subject, NamingPrivilege.STEM_ATTR_READ, false); Stem stem2 = new StemSave().assignName("test2").assignCreateParentStemsIfNotExist(true).save(); stem2.grantPriv(subject, NamingPrivilege.STEM_ADMIN, false); Set<Object[]> membershipsOwnersMembers = new MembershipFinder().addSubject(subject).assignFieldType(FieldType.ACCESS). assignMembershipType(MembershipType.IMMEDIATE).findMembershipResult().getMembershipsOwnersMembers(); for (Object[] membershipOwnerMember : GrouperUtil.nonNull(membershipsOwnersMembers)) { Membership membership = (Membership)membershipOwnerMember[0]; Group group = (Group)membershipOwnerMember[1]; Member member = (Member)membershipOwnerMember[2]; group.revokePriv(member.getSubject(), AccessPrivilege.listToPriv(membership.getField().getName() )); System.out.println("Deleted priv from group: " + group.getName() + ": " + membership.getField().getName()); } membershipsOwnersMembers = new MembershipFinder().addSubject(subject).assignFieldType(FieldType.NAMING). assignMembershipType(MembershipType.IMMEDIATE).findMembershipResult().getMembershipsOwnersMembers(); for (Object[] membershipOwnerMember : GrouperUtil.nonNull(membershipsOwnersMembers)) { Membership membership = (Membership)membershipOwnerMember[0]; Stem stem = (Stem)membershipOwnerMember[1]; Member member = (Member)membershipOwnerMember[2]; stem.revokePriv(member.getSubject(), NamingPrivilege.listToPriv(membership.getField().getName() )); System.out.println("Deleted priv from folder: " + stem.getName() + ": " + membership.getField().getName()); } // } //} //Deleted priv from group: test:test1: updaters //Deleted priv from group: test:test2: admins //Deleted priv from folder: test: stemAttrReaders //Deleted priv from folder: test: creators //Deleted priv from folder: test:test2: stemAdmins |
...