...
Code Block |
---|
select 'grantPriv("' || gg.name || '", "someid/server.school.edu", AccessPrivilege.ADMIN);' as script from grouper_groups gg where gg.name like school:apps:appName:spaces:%' and not exists (select (1) from grouper_memberships_lw_v gmlv where gg.name = gmlv.group_name and list_name = 'admins' and gmlv.subject_id = 'someid/server.school.edu'); |
Code Block |
---|
set linesize 1000;
set pagesize 1000;
select 'delMember("' || gg.name || '", "' || gm.subject_id || '");'
as script
from grouper_memberships_all_v gmav, grouper_fields gf, grouper_groups gg, grouper_members gm
where GMAV.FIELD_ID = GF.ID and gm.subject_id = '12345678' and GF.name = 'members'
and GMAV.OWNER_GROUP_ID = gg.ID and GMAV.MEMBER_ID = GM.ID and GMAV.DEPTH = 0
|
Here is an example of removing privileges from a user on groups in oracle, dont forget at top of script to add grouperSession = GrouperSession.startRootSession():
Code Block |
---|
set linesize 1000; set pagesize 1000; select 'revokePriv("' || gmlv.group_name || '", "' || gmlv.subject_id || '", AccessPrivilege.' || case when gmlv.LIST_NAME = 'admins' then 'ADMIN' when gmlv.LIST_NAME = 'readers' then 'READ' when gmlv.LIST_NAME = 'viewers' then 'VIEW' when gmlv.LIST_NAME = 'updaters' then 'UPDATE' when gmlv.LIST_NAME = 'optins' then 'OPTIN' when gmlv.LIST_NAME = 'optouts' then 'OPTOUT' else gmlv.LIST_NAME end || ');' as script from grouper_memberships_lw_v gmlv where subject_id = '12345678' and GMLV.LIST_TYPE = 'access' |
This oracle script will remove privileges on folders for a certain user, dont forget at top of script to add grouperSession = GrouperSession.startRootSession():
Code Block |
---|
set linesize 1000; set pagesize 1000; select 'revokePriv("' || gs.name || '", "' || gm.subject_id || '", NamingPrivilege.' || case when gf.NAME = 'stemmers' then 'STEM' when gf.NAME = 'creators' then 'CREATE' else gf.NAME end || ');' as script from grouper_memberships_all_v gmav, grouper_fields gf, grouper_stems gs, grouper_members gm where GMAV.FIELD_ID = GF.ID and gm.subject_id = '12345678' and GF.type = 'naming' and GMAV.OWNER_STEM_ID = GS.ID and GMAV.MEMBER_ID = GM.ID |
...