RoleAssignmentObject

Edit online

The RoleAssignmentObject class is a DataObject class for role assignment data.

Overview

The RoleAssignmentObject class is available only for IBM Verify Identity Governance - Container.

This class holds the assignment data that are associated with the defined role and the assigned role. The defined role is the role that holds a list of assignment attributes. The assigned role is the role to which the person is assigned.

Note: Note that creating RoleAssignmentObject using the constructor RoleAssignmentObject(String assignedRoleDN, String definedRoleDN) works as only a data object, and does not contain any data other than the in-memory DN object of assignedRoleDN and definedRoleDN. For example, if you call getPropertyNames() immediately after creating the RoleAssignmentObject from the RoleAssignmentObject(String assignedRoleDN, String definedRoleDN) constructor, then it returns an empty string array.

Details

Availability
IBM Verify Identity Governance - Container
Provided by
com.ibm.itim.script.extensions.model.RAObjectModelExtension
Constructors
new RoleAssignmentObject(RoleAssignmentObject assignmentObject)
Arguments
RoleAssignmentObject that is wrapped inside the RoleAssignmentObject.
new RoleAssignmentObject(String assignedRoleDN, String definedRoleDN)
Arguments
assignedRoleDN
The String format of the distinguished name for the assigned role.
definedRoleDN
The String format of the distinguished name for the defined role.
Methods
getPersonDN()
Returns the distinguished name string for the person which has the role.
addProperty()
Adds the values for specified assignment attribute.
getAssignedRoleDN()
Returns the distinguished name string for the role to which the person is assigned.
getDefinedRoleDN()
Returns the distinguished name string for the role in which the assignment attribute is defined.
getChanges()
Returns the changes made to this RoleAssignmentObject.
getProperty()
Returns the values of the property specified by the assignment attribute name.
getPropertyNames()
Returns a list of role assignment attribute names.
removeProperty()
Removes the values for the specified assignment attribute name.
setProperty()
Sets the values for a specified assignment attribute.
Description
RoleAssignmentObject contains the role assignment data, including the assigned role DN, the defined role DN and attribute values.
RoleAssignmentObject.getPersonDN()
The method returns the distinguished name string for the person that has the role.
RoleAssignmentObject.getAssignedRoleDN()
The method returns the distinguished name string for the role to which a person is assigned.
RoleAssignmentObject.getDefinedRoleDN()
The method returns the distinguished name string for the role in which the assignment attribute is defined.
RoleAssignmentObject.addProperty()
Use this method to add the values for specified assignment attribute.
RoleAssignmentObject.getChanges()
The method returns the changes made to an entity.
RoleAssignmentObject.getProperty()
The method returns the values of the assignment attribute specified by the given name.
RoleAssignmentObject.getPropertyNames()
The method returns a list of assignment attributes.
RoleAssignmentObject.removeProperty()
The method removes the assignment attribute specified by the given name.
RoleAssignmentObject.setProperty()
The method sets the value of the specified assignment attribute.

RoleAssignmentObject.getPersonDN()

The RoleAssignmentObject.getPersonDN() method returns the distinguished name string for the person which has the role.

Availability
IBM Security Verify Governance - IBM Verify Identity Governance - Container version 10.0.2.
Synopsis
roleAssignmentObject.getPersonDN()
Arguments
None
Returns
The distinguished name string for the role to which a person is assigned.
Description
This method returns the distinguished name string for the role to which a person is assigned.
Usage

// Find all role assignments for a given role DN 
// and print out the person that has this role
var assignedRoleDN = "globalid=111";

var raArray = (new RoleAssignmentSearch()).searchByFilter("",assignedRoleDN,"");
for (var i=0; i<raArray.length; i++) {
  var raObject = raArray[i];
  Enrole.log("script","Person DN: "+raObject.getPersonDN());

}