Loading...

XML

Word

Printable

Details

Type: Task
Resolution: Fixed
Priority: Minor
Fix Version/s: COmanage Registry 4.0.0 (Purple Jade)
Affects Version/s: COmanage Registry 3.2.2 (Oyster Pearl MR2)
Component/s: Registry Plugins
Labels:
- CMF-I2T

Description

When a record is in non-Active status (eg: Suspended) certain attributes remain in the record. The idea is to maintain referential integrity for applications (so identifiers and biodem remain) but remove authorizations (so groups are removed). Currently

eduPersonEntitlement is still populated. This is probably wrong.
inMemberOf for "all" groups (eg: CO:members:all, CO:COU:mycou:members:all) is still populated. This might be "right", given that as far as Registry is concerned the person is still in these groups, but then documentation should be made clear not to rely on these groups for authz.

Attachments

Activity

People

Assignee:: Benn Oshrin (internet2.edu)

Reporter:: Benn Oshrin (internet2.edu)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 09/May/19 1:48 PM

Updated:: 29/Aug/21 11:06 PM

Resolved:: 29/Aug/21 11:06 PM