-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathScopeSelection.xml
98 lines (92 loc) · 3.4 KB
/
ScopeSelection.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE sailpoint PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<sailpoint>
<Rule language="beanshell" name="Scope Selection Template" type="ScopeSelection">
<Description>
This rule is run if scope correlation for an identity's assigned scope
(either from a scope correlation attribute or rule) returns a
list of scopes because the correlation is ambiguous. This can
happen since scopes are not guaranteed to have unique names.
This rule is responsible for selecting the correct scope out of
the candidateScopes list for the given identity. If the correct
scope cannot be determined, this rule should return null.
</Description>
<Signature returnType="Scope">
<Inputs>
<Argument name="context">
<Description>
A sailpoint.api.SailPointContext object that can be used to query
the database if necessary.
</Description>
</Argument>
<Argument name="log">
<Description>
The log object associated with the SailPointContext.
</Description>
</Argument>
<Argument name="identity">
<Description>
The identity for which to correlate the assigned scope.
</Description>
</Argument>
<Argument name="scopeCorrelationAttribute">
<Description>
The name of the scope correlation attribute on the identity.
</Description>
</Argument>
<Argument name="scopeCorrelationAttributeValue">
<Description>
The value of the scope correlation attribute on the given identity.
</Description>
</Argument>
<Argument name="candidateScopes">
<Description>
The List of scopes that were correlated to the given Identity. A
single Scope from this list should be selected and
returned if it is
possible to determine the correct scope.
</Description>
</Argument>
</Inputs>
<Returns>
<Argument name="scope">
<Description>
A single scope selected from the candidateScopes List, or null if
it
is impossible to determine the correct scope for the given
identity.
</Description>
</Argument>
</Returns>
</Signature>
<ReferencedRules>
<Reference class="sailpoint.object.Rule" name="Global Rule Library"/>
</ReferencedRules>
<Source>
<![CDATA[
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import sailpoint.api.SailPointContext;
import org.apache.commons.logging.Log;
import sailpoint.object.TaskResult;
import sailpoint.object.Identity;
import java.lang.String;
import java.lang.String;
import java.util.List;
//Log mylogger = LogFactory.getLog("rule.ScopeSelection");
//mylogger.debug("Start ScopeSelection");
//add the following lines to IIQ Log4j properties file to use this logger
//logger.ScopeSelection.name=rule.ScopeSelection
//logger.ScopeSelection.level=debug
//Available Input Variables
//identity;
//scopeCorrelationAttribute;
//scopeCorrelationAttributeValue;
//candidateScopes;
//mylogger.debug("End ScopeSelection");
//return Scope
return null;
]]>
</Source>
</Rule>
</sailpoint>