By: harmanjeet singh user 18 Sep 2017 at 12:36 a.m. CDT

4 Responses
harmanjeet singh gravatar
How to create new roles in gluu server ? As in Gluu there is already a group named " gluu_manager_group" which has all the access of admin. We can create new group as there is option to create group but how can we manage the access of this group

By Mohib Zico Account Admin 18 Sep 2017 at 1:30 a.m. CDT

Mohib Zico gravatar
>> how can we manage the access of this group I am not sure what kind of 'access management' you are planning for new group; can you please explain?

By harmanjeet singh user 18 Sep 2017 at 6:56 a.m. CDT

harmanjeet singh gravatar
like admin has all access of configration,openId ,Manage Authentication etc but if i register new user on gluu server , new user have only access to its profile.. so how other access like conf etc are alloted to new user..

By Mohib Zico Account Admin 18 Sep 2017 at 7:50 a.m. CDT

Mohib Zico gravatar
>> so how other access like conf etc are alloted to new user.. What kind of configurations? If it's oxTrust configuration then no.. it's not possible in out of the box version.

By Michael Schwartz Account Admin 18 Sep 2017 at 10:48 a.m. CDT

Michael Schwartz gravatar
oxTrust only has two roles: admin and user. Admins are specified by adding them to the manager group. If you want to implement more granular access control in oxTrust, you'll need to add such code to oxTrust, and submit a pull request. However, we have not been interested in making oxTrust into a delegated admin application, so we would probably not incorporate such changes into the project. To pass role information to other applications, use an attribute and pass this information as a SAML attribute or OpenID Connect claim.