Just to clarify what I was mentioning in the conference call.......
Say if you have 2 identities in your IdM and you discover that they are the same person. The goal is to combine them into one. This scenario happens very often with us (about twice a week I think).
After the identities get merged in the IdM, it would be ideal if there was an easy way to merge the identities in other systems like Grouper.
So having something in the API like mergeMembers(Subject old, Subject
new) would be helpful along with access to this via web services.
If the Subject "new" doesn't exist in Grouper, I think the grouper_members table can simply be modified to replace "old" with "new". Otherwise, all the privileges, memberships, and references of "old" would be moved to "new". And then "old" would be deleted.
Does it seem like we want this type of functionality in the API and WS?