Details
-
Suggestion
-
Resolution: Fixed
-
None
-
None
Description
Currently applications need to duplicate code in LdapPermissionOption when setting directories to read only/read only local groups/read write outside of the admin plugin.. i.e. they need to specify the same set of operations. We'd like to move LdapPermissionOption from the embedded crowd admin plugin to the embedded-crowd-api in crowd, after renaming it to PermissionOption. Then application code like:
ldapDirectory.setAllowedOperations(EnumSet.of(OperationType.CREATE_GROUP, OperationType.DELETE_GROUP, OperationType.UPDATE_GROUP, OperationType.UPDATE_GROUP_ATTRIBUTE, OperationType.UPDATE_USER_ATTRIBUTE));
can become:
ldapDirectory.setAllowedOperations(LdapPermissionOption.READ_ONLY_LOCAL_GROUPS.getAllowedOperations());
CWD-2187 will only add the class to embedded-crowd-api-2.3.2,
the rest the work will be performed in https://studio.atlassian.com/browse/EMBCWD-848.