...
Note: implement the attributes like "Deprovisioning" used attributes
Group or Folder ADMINs can assign types
View on UI
Note, if a user can view a group, they can view this attribute assignment from a high level.
...
Show the data owner and service description if applicableIf there are other lists of objects where there is space, either add it or add it to the tooltip
Show this all in one paragraph. Show toolips on each type
As part of types, the loader summary should be moved from the loader "view" screen to this paragraph too. It should read as follows: This group is managed by loader group testSqlSimple, last fully loaded on Sat Dec 01 06:00:04 UTC 2018 with summary: 167 total, 0 inserted, 5 deleted, 2 updated.
E.g. shows on group UI: Group types: ref, readonly. The data owner is: the registrar's office. The member description is: faculty, staff, temps.
If the type is "app", and it is an indirect assignment, and the folder which assigns it has a display extension of "Wiki", then followup with a sentence (note, the folder should be linkable to that folder): This is in the Wiki app.
If the type is "service", and it is an indirect assignment, and the folder which assigns it has a display extension of "Student systems", then followup with a sentence (note, the folder should be linkable to that folder): This is the Student systems service.
| Type | Owner type | Tooltip |
|---|---|---|
| ref | group/folder | Reference groups are institutionally meaningful cohorts used in access policy. |
| basis | group/folder | Basis groups represent arcane codes or attributes from external systems are used generally in reference groups and not directly in access policy. |
| readonly | group/folder | Read-only groups should not have membership changes except by the process that manages the group; perhaps external from the central authorization system |
| policy | group/folder | Access policy groups are used by downstream systems to allow or deny users access to services or resources. |
| bundle | group/folder | Bundles are reference groups which aggregate multiple other reference groups. Reference groups are institutionally meaningful cohorts used in access policy. |
| security | group/folder | Security groups are collections of entities who have from access privilege on a group/folder/attribute, e.g. studentSystemAdmins. |
| org | group/folder | "Org" or organization groups or folders are delegated to and owned by organizations in the community. |
| test | group/folder | Test groups or folders are not used in production systems. They could be for dev, test, performance, etc environments. |
| app | group/folder | App groups or folders exist to be used in a specific application. |
| service | group/folder | A service is a collection of one or many apps that comprise of a service offered to users. |
Screenshots
The screenshot below shows how you use the more actions button to access Type.
...
The screenshot below shows a Type setting and specifies if inherited or not.. Note, add text that states that type assignments and metadata can be viewed by anyone who can VIEW a group.
The screenshot below shows Type info under the folder name to make it easily accessible.
...