...
Review the groups and make some assignments
Group privileges that one user has where the other doesnt
Code Block |
---|
select
gg.name, gf.name
from
grouper_memberships gms,
grouper_members gm,
grouper_fields gf,
grouper_groups gg
where
gms.field_id = gf.id
and gf.type = 'access'
and gms.member_id = gm.id
and gg.id = gms.owner_group_id
and gms.mship_type = 'immediate'
and gm.subject_id = '18141566'
and not exists (
select
1
from
grouper_memberships gms2,
grouper_members gm2,
grouper_fields gf2,
grouper_groups gg2
where
gms2.field_id = gf2.id
and gf2.id = gf.id
and gms2.member_id = gm2.id
and gg2.id = gms2.owner_group_id
and gms2.mship_type = 'immediate'
and gms2.owner_group_id = gms.owner_group_id
and gm2.subject_id = '16562702'
)
order by
1; |
Stem privileges
Code Block |
---|
select
gs.name, gf.name
from
grouper_memberships gms,
grouper_members gm,
grouper_fields gf,
grouper_stems gs
where
gms.field_id = gf.id
and gf.type = 'naming'
and gms.member_id = gm.id
and gs.id = gms.owner_stem_id
and gms.mship_type = 'immediate'
and gm.subject_id = '18141566'
and not exists (
select
1
from
grouper_memberships gms2,
grouper_members gm2,
grouper_fields gf2,
grouper_stems gs2
where
gms2.field_id = gf2.id
and gf2.id = gf.id
and gms2.member_id = gm2.id
and gs2.id = gms2.owner_stem_id
and gms2.mship_type = 'immediate'
and gms2.owner_stem_id = gms.owner_stem_id
and gm2.subject_id = '16562702'
)
order by
1; |