├── samples
├── rest
│ ├── query-all.json
│ ├── modify-attribute-empty-delta.json
│ ├── org-project.json
│ ├── role-employee.json
│ ├── query-gen-name.json
│ ├── query-gen-cap-name.json
│ ├── policy-items-password-rpc-generate.json
│ ├── query-users-param.json
│ ├── user-pwd-reset.json
│ ├── query-approval-for-user.json
│ ├── query-report-data.json
│ ├── user-jack.json
│ ├── query-all-request-targets.json
│ ├── query-asignee-approve-access.json
│ ├── modify-attribute-task.json
│ ├── modify-attribute-gen.json
│ ├── modify-attribute-resource.json
│ ├── policy-items-identifier-generate.json
│ ├── query-paging.xml
│ ├── policy-items-password-generate.json
│ ├── approve-work-item.json
│ ├── policy-items-password-validate.json
│ ├── policy-items-identifier-validate.json
│ ├── modify-attribute-assign-entitlement.json
│ ├── delegate-work-item.json
│ ├── notify-change-modify-password.json
│ ├── modify-user-assign-role.xml
│ ├── rpc-recompute-input-filter.json
│ ├── task-recompute-members-employee.json
│ ├── policy-items-definition-generate-role.xml
│ ├── query-all-tasks.xml
│ ├── policy-items-definition-validate.xml
│ ├── task-report-create.json
│ ├── query-users-param.xml
│ ├── query-livesync-tasks.xml
│ └── query-all-accounts.xml
├── stories
│ ├── password-hash
│ │ └── csv.csv
│ ├── unix-management
│ │ └── midpoint-user-example.txt
│ ├── multitenant-idm-saas
│ │ ├── misc
│ │ │ └── midpoint-crm-flatfile.csv
│ │ └── aci.ldif
│ └── unix-ldap
│ │ ├── other
│ │ ├── sequence-gidnumber.xml
│ │ └── sequence-uidnumber.xml
│ │ └── aci.ldif
├── resources
│ ├── csv
│ │ ├── midpoint-groups.csv
│ │ ├── multisource_w_conf_associations
│ │ │ ├── Organization.csv
│ │ │ ├── User.csv
│ │ │ └── sourceOfTruth.prop
│ │ ├── midpoint-username.csv
│ │ ├── midpoint-guid.csv
│ │ └── midpoint-hr.csv
│ ├── manual
│ │ └── semi-manual.csv
│ ├── openldap
│ │ ├── barbossa-disable.ldif
│ │ ├── barbossa-enable.ldif
│ │ ├── repltest
│ │ │ ├── master1-repl.ldif
│ │ │ └── openldap-base.ldif
│ │ └── midpoint-schema-example-mod.ldif
│ ├── databasetable
│ │ ├── drop-simple-idm-table.mysql
│ │ ├── postgresql
│ │ │ └── create-table-psql.sql
│ │ ├── create-simple-idm-table.mysql
│ │ ├── create-simple-idm-table-sync.mysql
│ │ └── create-simple-idm-table-2.mysql
│ ├── scriptedsql
│ │ ├── create-scripted-idm-db-sync-postgresql.sql
│ │ ├── BaseScript.groovy
│ │ ├── TestScript.groovy
│ │ └── common
│ │ │ └── ColumnPrefixMapper.groovy
│ ├── unix
│ │ └── midpoint-user-example.txt
│ ├── ldap
│ │ ├── evo-test-1-mod.ldif
│ │ ├── evo-test-1.ldif
│ │ ├── midpoint-schema-example-mod.ldif
│ │ └── evo-test-1.schema
│ ├── ad-ldap
│ │ ├── AD simple
│ │ │ ├── tasks
│ │ │ │ └── 10-test-all-resources.xml
│ │ │ └── upload.sh
│ │ └── AD advanced
│ │ │ └── lookuptables
│ │ │ └── adGroupTypes.xml
│ ├── eduid
│ │ └── basic-eduid-affiliation.xml
│ ├── openstack
│ │ └── mandatory-description.xml
│ ├── msgraph
│ │ ├── objects
│ │ │ └── roles
│ │ │ │ └── role-construction-account-graph.xml
│ │ └── mandatory-attributes-for-microsoft-azure-ad-group.xml
│ └── cmd
│ │ ├── CreateScript.sh
│ │ ├── UpdateScript.sh
│ │ ├── TestScript.sh
│ │ └── SearchScript.sh
├── jmx
│ ├── jmxremote.access
│ └── jmxremote.password
├── evolveum
│ ├── posixgroups.aci
│ ├── posixgroups.ldif
│ └── hr.csv
├── book
│ └── README
├── correlation
│ └── 2024-03-21-webinar
│ │ ├── files
│ │ ├── sis-campus-2.csv
│ │ ├── sis-campus-3.csv
│ │ └── sis-campus-1.csv
│ │ └── README.adoc
├── json
│ └── user-jack.json
├── associations
│ └── dms
│ │ ├── _readme.txt
│ │ ├── scripts
│ │ ├── TestScript.groovy
│ │ ├── Constants.groovy
│ │ └── common
│ │ │ └── ColumnPrefixMapper.groovy
│ │ ├── archetype-document-store.xml
│ │ └── system-configuration-snippet.xml
├── compliance
│ ├── objects
│ │ ├── experiment
│ │ │ ├── roles
│ │ │ │ ├── foorole.xml
│ │ │ │ └── experimental-security.xml
│ │ │ └── users
│ │ │ │ └── adam.xml
│ │ ├── sample-book
│ │ │ ├── roles
│ │ │ │ ├── software-developer.xml
│ │ │ │ ├── invoice-clerk.xml
│ │ │ │ ├── software-development-mentor.xml
│ │ │ │ ├── information-security-auditor.xml
│ │ │ │ ├── information-security-manager.xml
│ │ │ │ ├── invoice-supervisor.xml
│ │ │ │ ├── information-security-specialist.xml
│ │ │ │ ├── business-analyst.xml
│ │ │ │ ├── website-logs.xml
│ │ │ │ ├── crm-customer-database-read.xml
│ │ │ │ ├── crm-customer-database-write.xml
│ │ │ │ ├── collaboration-limted-user.xml
│ │ │ │ ├── influencer.xml
│ │ │ │ ├── website-editor.xml
│ │ │ │ ├── crm-customer-database-admin.xml
│ │ │ │ ├── collaboration-admin.xml
│ │ │ │ ├── collaboration-ordinary-user.xml
│ │ │ │ ├── website-admin.xml
│ │ │ │ ├── system-administrator.xml
│ │ │ │ ├── data-protection-officer.xml
│ │ │ │ └── collaboration-power-user.xml
│ │ │ ├── services
│ │ │ │ ├── app-crm.xml
│ │ │ │ ├── app-website.xml
│ │ │ │ └── app-collaboration-platform.xml
│ │ │ └── orgs
│ │ │ │ ├── F10000-example.xml
│ │ │ │ ├── LBE-berlin.xml
│ │ │ │ ├── LPA-paris.xml
│ │ │ │ ├── LLO-london.xml
│ │ │ │ ├── LEU-eu.xml
│ │ │ │ ├── LNY-new-york.xml
│ │ │ │ ├── PBD2020-big-deal.xml
│ │ │ │ ├── F12300-it.xml
│ │ │ │ ├── F11320-creative.xml
│ │ │ │ ├── F12310-sysadmin.xml
│ │ │ │ ├── F12100-legal.xml
│ │ │ │ ├── PLS-loudspeaker.xml
│ │ │ │ ├── F19100-audit.xml
│ │ │ │ ├── F19200-security.xml
│ │ │ │ ├── F19210-physical-security.xml
│ │ │ │ ├── F12000-operations.xml
│ │ │ │ ├── PWL2-wonderland2.xml
│ │ │ │ ├── F12330-architecture.xml
│ │ │ │ ├── F19000-controlling.xml
│ │ │ │ ├── F11100-direct-sales.xml
│ │ │ │ ├── F11300-marketing.xml
│ │ │ │ ├── F19220-information-security.xml
│ │ │ │ ├── F11200-indirect-sales.xml
│ │ │ │ ├── F11310-brand-awareness.xml
│ │ │ │ ├── F12200-backoffice.xml
│ │ │ │ └── F12320-software.xml
│ │ ├── demo
│ │ │ ├── roles
│ │ │ │ ├── random-role.xml
│ │ │ │ ├── portfolio-management-user.xml
│ │ │ │ └── portfolio-management-admin.xml
│ │ │ ├── services
│ │ │ │ ├── app-project-management.xml
│ │ │ │ └── app-portfolio-management.xml
│ │ │ └── users
│ │ │ │ ├── 105-audrey.xml
│ │ │ │ └── susie.xml
│ │ ├── postponed
│ │ │ ├── 390-role-catalog.xml
│ │ │ ├── role-catalog-client-acquisition.xml
│ │ │ └── role-catalog-customer-support.xml
│ │ ├── experiment-tlp
│ │ │ ├── policies
│ │ │ │ ├── 360-classification-tlp-clear.xml
│ │ │ │ ├── 360-classification-tlp-green.xml
│ │ │ │ ├── 360-classification-tlp-red.xml
│ │ │ │ ├── 360-classification-tlp-amber-strict.xml
│ │ │ │ └── 360-classification-tlp-amber.xml
│ │ │ └── services
│ │ │ │ ├── app-crm.xml
│ │ │ │ ├── app-collaboration-platform.xml
│ │ │ │ └── app-website.xml
│ │ └── initial-postponed
│ │ │ ├── marks
│ │ │ ├── 250-neglected.xml
│ │ │ └── 250-understaffed-security.xml
│ │ │ └── archetypes
│ │ │ └── 064-role-policy.xml
│ ├── misc
│ │ └── system-config.txt
│ ├── .gitignore
│ └── README.adoc
├── requestAccess
│ └── 2024-02-22-webinar
│ │ ├── orgs
│ │ ├── 10-everything.xml
│ │ ├── 15-ra-root.xml
│ │ ├── 30-sailors.xml
│ │ ├── 20-government.xml
│ │ ├── 60-army-ships.xml
│ │ ├── 70-other-ships.xml
│ │ ├── 50-pirate-ships.xml
│ │ ├── 80-transportation.xml
│ │ ├── 51-black-pearl.xml
│ │ ├── 53-jolly-roger.xml
│ │ ├── 84-ss-normandie.xml
│ │ ├── 82-rms-queen-mary.xml
│ │ ├── 52-flying-dutchman.xml
│ │ ├── 54-adventure-galley.xml
│ │ ├── 55-queen-annes-revenge.xml
│ │ ├── 81-rms-queen-elisabeth.xml
│ │ ├── 83-rms-queen-elisabeth-2.xml
│ │ ├── 85-ms-allure-of-the-seas.xml
│ │ └── 40-ships.xml
│ │ ├── roles
│ │ ├── soldier.xml
│ │ ├── dumb-sailor.xml
│ │ ├── helper.xml
│ │ ├── judge.xml
│ │ ├── prisoner.xml
│ │ ├── governor.xml
│ │ └── authorization-approver.xml
│ │ ├── object-collections
│ │ ├── object-collection-all-users.xml
│ │ ├── object-collection-sailor.xml
│ │ └── object-collection-government.xml
│ │ ├── README.adoc
│ │ ├── users
│ │ ├── turner.xml
│ │ ├── ragetti.xml
│ │ ├── pintel.xml
│ │ ├── gibbs.xml
│ │ ├── sparrow.xml
│ │ ├── swann.xml
│ │ └── norrington.xml
│ │ └── archetypes
│ │ ├── archetype-user-army.xml
│ │ ├── archetype-role-sailor.xml
│ │ ├── archetype-role-government.xml
│ │ └── archetype-user-pirate.xml
├── demo
│ ├── midprivacy
│ │ ├── misc
│ │ │ └── resource-files
│ │ │ │ ├── students.csv
│ │ │ │ └── hr.csv
│ │ └── objects
│ │ │ ├── service
│ │ │ ├── origin-hr-feed.xml
│ │ │ └── origin-studentsRegistry-feed.xml
│ │ │ └── archetypes
│ │ │ └── archetypeCommonUser.xml
│ ├── renaissance
│ │ └── readme.adoc
│ └── hogwarts
│ │ └── groups.ldif
├── audit
│ └── custom-audit-columns-postgresql.sql
├── object-counts
│ ├── README.adoc
│ └── systemConfiguration
│ │ └── object-templates.txt
├── classification
│ └── classification-nis1-sk
│ │ ├── objects
│ │ ├── orgs
│ │ │ └── chief-audit-office.xml
│ │ ├── policies
│ │ │ ├── nda.xml
│ │ │ └── special-cybersecurity-training.xml
│ │ ├── users
│ │ │ ├── emma.xml
│ │ │ ├── tom.xml
│ │ │ ├── wendy.xml
│ │ │ ├── simon.xml
│ │ │ ├── petra.xml
│ │ │ └── charlie.xml
│ │ ├── services
│ │ │ ├── website.xml
│ │ │ ├── management-information-system.xml
│ │ │ ├── restricted-research-database.xml
│ │ │ └── collaboration-platform.xml
│ │ ├── roles
│ │ │ ├── research-database-reader.xml
│ │ │ ├── website-blogger.xml
│ │ │ ├── website-statistics-access.xml
│ │ │ ├── collaboration-platform-user.xml
│ │ │ ├── website-administrator.xml
│ │ │ ├── marketing-analyst.xml
│ │ │ ├── webmaster.xml
│ │ │ ├── collaboration-platform-admin.xml
│ │ │ └── terrible-role.xml
│ │ └── object-collections
│ │ │ ├── object-collection-users-cat1.xml
│ │ │ ├── object-collection-users-privileged.xml
│ │ │ ├── object-collection-users-cat2.xml
│ │ │ └── object-collection-users-cat3.xml
│ │ ├── README.adoc
│ │ └── .gitignore
├── simulation
│ ├── tutorial
│ │ ├── hr.csv
│ │ ├── task-hr-import.xml
│ │ ├── task-ldap-import.xml
│ │ ├── task-hr-import-simulation-no-result.xml
│ │ ├── task-hr-import-simulation.xml
│ │ ├── task-ldap-import-simulation.xml
│ │ ├── task-hr-import-shadow-management-simulation.xml
│ │ └── task-ldap-import-shadow-management-simulation.xml
│ └── 2023-12-07-webinar
│ │ └── changes-phone-and-ou.ldif
├── dashboard
│ ├── report-asynchronous-widget.xml
│ ├── howto
│ │ ├── collection-disabled-users.xml
│ │ ├── collection-enabled-users.xml
│ │ └── report-dashboard-howto-example.xml
│ ├── object-collection-resource-all.xml
│ └── object-collection-failed-users-task.xml
├── bulk
│ ├── assignRoleWithActivationToUser.yaml
│ └── assignRoleWithActivationToUser.xml
├── introductionToFlexibleAuthentication.2024-05-16-webinar
│ ├── README.adoc
│ └── objects
│ │ └── 04-super-archetype.xml
├── objects
│ ├── sequence0-99.xml
│ └── user-jack.xml
├── contrib
│ ├── README.md
│ └── bshp
│ │ └── objects
│ │ └── lookupTables
│ │ └── Risk Levels.xml
├── org
│ └── org-top.xml
├── tasks
│ ├── task-jdbc-ping-default.xml
│ └── task-reindex.xml
└── group-synchronization
│ └── 2024-11-07-webinar
│ └── objects
│ └── 910-1test-all-resources.xml
├── .gitignore
├── test-setenv.bat
├── .mvn
└── wrapper
│ ├── maven-wrapper.jar
│ └── maven-wrapper.properties
├── test-setenv.sh
└── test.bat
/samples/rest/query-all.json:
--------------------------------------------------------------------------------
1 | {
2 | "query" : ""
3 | }
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | target/
2 |
3 | /.idea/
4 | *.iml
5 | *~
6 | *.kdbx
7 | *.idea/
--------------------------------------------------------------------------------
/samples/stories/password-hash/csv.csv:
--------------------------------------------------------------------------------
1 | "username","fullname","active","password"
2 |
--------------------------------------------------------------------------------
/samples/rest/modify-attribute-empty-delta.json:
--------------------------------------------------------------------------------
1 | {
2 | "objectModification": {
3 | }
4 | }
--------------------------------------------------------------------------------
/samples/resources/csv/midpoint-groups.csv:
--------------------------------------------------------------------------------
1 | "login","firstname","lastname","disabled","password","groups"
2 |
--------------------------------------------------------------------------------
/test-setenv.bat:
--------------------------------------------------------------------------------
1 | set POSTGRES_JDBC_URL=""
2 | set POSTGRES_JDBC_USERNAME=""
3 | set POSTGRES_JDBC_PASSWORD=""
--------------------------------------------------------------------------------
/samples/jmx/jmxremote.access:
--------------------------------------------------------------------------------
1 | # Gives 'midpoint' user read-write access to JMX objects.
2 | midpoint readwrite
3 |
--------------------------------------------------------------------------------
/samples/resources/manual/semi-manual.csv:
--------------------------------------------------------------------------------
1 | "username","fullname","description","interests","disabled","password"
2 |
--------------------------------------------------------------------------------
/samples/rest/org-project.json:
--------------------------------------------------------------------------------
1 | {
2 | "org": {
3 | "name": "P0000",
4 | "displayName": "Projects"
5 | }
6 | }
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/Evolveum/midpoint-samples/HEAD/.mvn/wrapper/maven-wrapper.jar
--------------------------------------------------------------------------------
/samples/jmx/jmxremote.password:
--------------------------------------------------------------------------------
1 | # Enables 'midpoint' user to access JMX using the following password.
2 | midpoint secret
3 |
--------------------------------------------------------------------------------
/samples/rest/role-employee.json:
--------------------------------------------------------------------------------
1 | {
2 | "role": {
3 | "name": "employee",
4 | "displayName": "Basic Employee"
5 | }
6 | }
--------------------------------------------------------------------------------
/samples/rest/query-gen-name.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "name startsWith \"a\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/evolveum/posixgroups.aci:
--------------------------------------------------------------------------------
1 | to dn.subtree="ou=posixgroups,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
2 |
--------------------------------------------------------------------------------
/samples/rest/query-gen-cap-name.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "name startsWith \"A\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/rest/policy-items-password-rpc-generate.json:
--------------------------------------------------------------------------------
1 | {
2 | "policyItemsDefinition": {
3 | "policyItemDefinition": {
4 | }
5 | }
6 | }
--------------------------------------------------------------------------------
/samples/book/README:
--------------------------------------------------------------------------------
1 | Book samples have been moved to midpoint-book repository:
2 |
3 | https://github.com/Evolveum/midpoint-book/tree/master/samples
4 |
--------------------------------------------------------------------------------
/samples/evolveum/posixgroups.ldif:
--------------------------------------------------------------------------------
1 | dn: ou=posixgroups,dc=evolveum,dc=net
2 | changetype: add
3 | objectclass: organizationalUnit
4 | ou: posixgroups
5 |
--------------------------------------------------------------------------------
/samples/resources/csv/multisource_w_conf_associations/Organization.csv:
--------------------------------------------------------------------------------
1 | orgid;name;manager
2 | 001;org1;user1
3 | 002;org2;user2
4 | 003;org3;user5
5 |
--------------------------------------------------------------------------------
/samples/rest/query-users-param.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "emailAddress endsWith \"@evolveum.com\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/rest/user-pwd-reset.json:
--------------------------------------------------------------------------------
1 | {
2 | "executeCredentialResetRequest": {
3 | "resetMethod": "passwordReset",
4 | "userEntry": "5ecr3tP4s5w0rd"
5 | }
6 | }
--------------------------------------------------------------------------------
/samples/rest/query-approval-for-user.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "state = \"open\" AND objectRef/@/name =\"Jack\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/rest/query-report-data.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "reportRef/@/name =\"All error audit records in 24h\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/resources/csv/midpoint-username.csv:
--------------------------------------------------------------------------------
1 | username,firstname,lastname,disabled,password
2 | user01,Firstname,Lastname,false,secret
3 | user02,Test,Lastname,false,secret
4 |
--------------------------------------------------------------------------------
/samples/rest/user-jack.json:
--------------------------------------------------------------------------------
1 | {
2 | "user": {
3 | "name": "jack",
4 | "fullName": "Jack Sparrow",
5 | "givenName": "Jack",
6 | "familyName": "Sparrow"
7 | }
8 | }
--------------------------------------------------------------------------------
/samples/correlation/2024-03-21-webinar/files/sis-campus-2.csv:
--------------------------------------------------------------------------------
1 | Number,Gender,Title,GivenName,MiddleInitial,Surname,StreetAddress,City,State,StateFull,ZipCode,Country,Birthday,NationalID
2 |
--------------------------------------------------------------------------------
/samples/correlation/2024-03-21-webinar/files/sis-campus-3.csv:
--------------------------------------------------------------------------------
1 | Number,Gender,Title,GivenName,MiddleInitial,Surname,StreetAddress,City,State,StateFull,ZipCode,Country,Birthday,NationalID
2 |
--------------------------------------------------------------------------------
/samples/json/user-jack.json:
--------------------------------------------------------------------------------
1 | {
2 | "name" : "jack",
3 | "fullName" : "Cpt. Jack Sparrow",
4 | "givenName" : "Jack",
5 | "familyName" : "Sparrow",
6 | "honorificPrefix" : "Cpt."
7 | }
8 |
--------------------------------------------------------------------------------
/samples/rest/query-all-request-targets.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "requestable = true AND parentOrgRef/@/name = \"Role Catalog\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/rest/query-asignee-approve-access.json:
--------------------------------------------------------------------------------
1 | {
2 | "query": {
3 | "filter": {
4 | "text": "state = \"open\" AND workItem/assigneeRef/@/name =\"JohnM\""
5 | }
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/resources/openldap/barbossa-disable.ldif:
--------------------------------------------------------------------------------
1 | dn: uid=barbossa, ou=People, dc=example,dc=com
2 | changetype: modify
3 | replace: midPointAccountStatus
4 | midPointAccountStatus: disabled
5 |
--------------------------------------------------------------------------------
/samples/resources/openldap/barbossa-enable.ldif:
--------------------------------------------------------------------------------
1 | dn: uid=barbossa, ou=People, dc=example,dc=com
2 | changetype: modify
3 | replace: midPointAccountStatus
4 | midPointAccountStatus: enabled
5 |
--------------------------------------------------------------------------------
/samples/resources/csv/multisource_w_conf_associations/User.csv:
--------------------------------------------------------------------------------
1 | userid;name;password;organization
2 | 001;user1;;org1#org2
3 | 002;user2;;org1
4 | 003;user3;;org2
5 | 004;user4;;
6 | 005;user5;;org3
7 |
--------------------------------------------------------------------------------
/samples/resources/databasetable/drop-simple-idm-table.mysql:
--------------------------------------------------------------------------------
1 | DROP TABLE IF EXISTS midpoint_tests.idrepo;
2 | DROP TABLE IF EXISTS midpoint_tests.idrepo2;
3 | DROP DATABASE IF EXISTS midpoint_tests;
4 |
--------------------------------------------------------------------------------
/samples/associations/dms/_readme.txt:
--------------------------------------------------------------------------------
1 | Here is the sample for "Document management system" (DMS) resource, showing associations, as of 4.9-M5.
2 |
3 | Please adapt file paths in `resource-dms.xml` appropriately.
4 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment/roles/foorole.xml:
--------------------------------------------------------------------------------
1 |
2 | Foorole
3 |
4 |
--------------------------------------------------------------------------------
/samples/resources/csv/midpoint-guid.csv:
--------------------------------------------------------------------------------
1 | "guid","uname","firstname","lastname","disabled","password"
2 | "001","user01","Firstname","Lastname","false","secret"
3 | "002","user02","Test","Lastname","false","secret"
4 |
--------------------------------------------------------------------------------
/samples/rest/modify-attribute-task.json:
--------------------------------------------------------------------------------
1 | {
2 | "objectModification": {
3 | "itemDelta": {
4 | "modificationType": "replace",
5 | "path": "schedulingState",
6 | "value": "ready"
7 | }
8 | }
9 | }
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/10-everything.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Everything
5 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/15-ra-root.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Request access
5 |
--------------------------------------------------------------------------------
/samples/rest/modify-attribute-gen.json:
--------------------------------------------------------------------------------
1 | {
2 | "objectModification": {
3 | "itemDelta": {
4 | "modificationType": "add",
5 | "path": "description",
6 | "value": "Description parameter modified via REST"
7 | }
8 | }
9 | }
--------------------------------------------------------------------------------
/samples/rest/modify-attribute-resource.json:
--------------------------------------------------------------------------------
1 | {
2 | "objectModification": {
3 | "itemDelta": {
4 | "modificationType": "replace",
5 | "path": "capabilities/configured/delete/enabled/",
6 | "value": false
7 | }
8 | }
9 | }
--------------------------------------------------------------------------------
/samples/rest/policy-items-identifier-generate.json:
--------------------------------------------------------------------------------
1 | {
2 | "policyItemsDefinition": {
3 | "policyItemDefinition": {
4 | "target": {
5 | "path": "identifier"
6 | },
7 | "execute": "true"
8 | }
9 | }
10 | }
--------------------------------------------------------------------------------
/samples/rest/query-paging.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 | name
4 | 0
5 | 5
6 |
7 |
8 |
--------------------------------------------------------------------------------
/.mvn/wrapper/maven-wrapper.properties:
--------------------------------------------------------------------------------
1 | distributionUrl=https://repo.maven.apache.org/maven2/org/apache/maven/apache-maven/3.6.3/apache-maven-3.6.3-bin.zip
2 | wrapperUrl=https://repo.maven.apache.org/maven2/io/takari/maven-wrapper/0.5.6/maven-wrapper-0.5.6.jar
3 |
--------------------------------------------------------------------------------
/samples/rest/policy-items-password-generate.json:
--------------------------------------------------------------------------------
1 | {
2 | "policyItemsDefinition": {
3 | "policyItemDefinition": {
4 | "target": {
5 | "path": "credentials/password/value"
6 | },
7 | "execute": "true"
8 | }
9 | }
10 | }
--------------------------------------------------------------------------------
/samples/correlation/2024-03-21-webinar/files/sis-campus-1.csv:
--------------------------------------------------------------------------------
1 | Number,Gender,Title,GivenName,MiddleInitial,Surname,StreetAddress,City,State,StateFull,ZipCode,Country,CountryFull,EmailAddress,TelephoneNumber,TelephoneCountryCode,MothersMaiden,Birthday,NationalID
2 |
--------------------------------------------------------------------------------
/samples/rest/approve-work-item.json:
--------------------------------------------------------------------------------
1 | {
2 | "output" : {
3 | "@type" : "c:AbstractWorkItemOutputType",
4 | "comment" : "sample comment",
5 | "outcome" : "http://midpoint.evolveum.com/xml/ns/public/model/approval/outcome#approve"
6 | }
7 | }
--------------------------------------------------------------------------------
/samples/demo/midprivacy/misc/resource-files/students.csv:
--------------------------------------------------------------------------------
1 | identifier,firstName,lastName,organization,organizationalUnit,loa
2 | JohnSmith,John,Smith,My University,,1
3 | PeterBrave,Peter,Brave,My University,,2
4 | JaneBrooks,Jane,Brooks,My University,Philosofical faculty,1
5 |
--------------------------------------------------------------------------------
/samples/rest/policy-items-password-validate.json:
--------------------------------------------------------------------------------
1 | {
2 | "policyItemsDefinition": {
3 | "policyItemDefinition": {
4 | "value": "5ecr3t5AbC",
5 | "valuePolicyRef" :{
6 | "oid": "00000000-0000-0000-0000-000000000003"
7 | }
8 | }
9 | }
10 | }
--------------------------------------------------------------------------------
/samples/demo/midprivacy/misc/resource-files/hr.csv:
--------------------------------------------------------------------------------
1 | identifier,firstName,lastName,employeeType,organization,organizationalUnit,loa
2 | JohnSmith,John,Smith,internal,My University,,2
3 | PeterBrave,Peter,Brave,external,My Company,,1
4 | GracePatton,Grace,Patton,internal,My University,Rectorate,2
5 |
--------------------------------------------------------------------------------
/samples/resources/csv/multisource_w_conf_associations/sourceOfTruth.prop:
--------------------------------------------------------------------------------
1 | Org.filePath=/opt/midpoint/var/resource/Organization.csv
2 | Org.trim=true
3 | Org.headerExists=true
4 | Org.fieldDelimiter=;
5 | Org.uniqueAttribute=orgid
6 | Org.nameAttribute=name
7 | Org.auxiliary=true
8 | Org.container=true
9 |
--------------------------------------------------------------------------------
/samples/resources/scriptedsql/create-scripted-idm-db-sync-postgresql.sql:
--------------------------------------------------------------------------------
1 | CREATE USER mdp_scriptedsql WITH PASSWORD 'password' LOGIN;
2 | CREATE DATABASE mdp_scriptedsql WITH OWNER = mdp_scriptedsql ENCODING = 'UTF8' TABLESPACE = pg_default LC_COLLATE = 'en_US.UTF-8' LC_CTYPE = 'en_US.UTF-8' CONNECTION LIMIT = -1;
3 |
--------------------------------------------------------------------------------
/samples/audit/custom-audit-columns-postgresql.sql:
--------------------------------------------------------------------------------
1 | ALTER TABLE m_audit_event ADD custFoo VARCHAR(255);
2 | ALTER TABLE m_audit_event ADD custBar VARCHAR(48);
3 |
4 | CREATE INDEX iAuditEventCustFoo
5 | ON m_audit_event (custFoo);
6 | CREATE INDEX iAuditEventCustBar
7 | ON m_audit_event (custBar);
8 |
9 | commit;
10 |
--------------------------------------------------------------------------------
/samples/object-counts/README.adoc:
--------------------------------------------------------------------------------
1 | = Object Counts Sample - how to use
2 |
3 | This is midPoint configuration sample, describing configuration for computing counts of related objects and storing it in midPoint objects.
4 |
5 | It is described in docs in https://docs.evolveum.com/midpoint/reference/master/samples/object-counts/.
--------------------------------------------------------------------------------
/samples/rest/policy-items-identifier-validate.json:
--------------------------------------------------------------------------------
1 | {
2 | "policyItemsDefinition": {
3 | "policyItemDefinition": {
4 | "target": {
5 | "path": "identifier"
6 | },
7 | "execute": "true",
8 | "valuePolicyRef" :{
9 | "oid": "00000000-0000-0000-0000-000000000003"
10 | }
11 | }
12 | }
13 | }
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/30-sailors.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Sailors
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/20-government.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Government
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/60-army-ships.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Army ships
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/70-other-ships.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Other ships
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/50-pirate-ships.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Pirate ships
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/80-transportation.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Transportation
5 |
6 |
7 |
8 |
9 |
--------------------------------------------------------------------------------
/samples/resources/unix/midpoint-user-example.txt:
--------------------------------------------------------------------------------
1 | Host_Alias HOST = ALL
2 |
3 | midpoint HOST=(ALL) NOPASSWD: /usr/sbin/useradd,/usr/sbin/usermod,/usr/sbin/userdel,/usr/sbin/groupadd,/usr/sbin/groupmod,/usr/sbin/groupdel,/bin/mv,/usr/bin/passwd,/usr/bin/getent,/bin/echo,/usr/bin/tee,/bin/chown,/bin/chmod,/bin/mkdir,/usr/bin/groups,/usr/bin/id,/usr/bin/replace,/bin/rm,/bin/cat
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/orgs/chief-audit-office.xml:
--------------------------------------------------------------------------------
1 |
2 | Chief Audit Office
3 |
4 |
5 |
6 |
7 |
--------------------------------------------------------------------------------
/samples/compliance/misc/system-config.txt:
--------------------------------------------------------------------------------
1 |
2 | RoleType
3 |
4 |
5 |
6 |
7 |
8 |
--------------------------------------------------------------------------------
/samples/rest/modify-attribute-assign-entitlement.json:
--------------------------------------------------------------------------------
1 | {
2 | "objectModification": {
3 | "itemDelta": {
4 | "modificationType": "add",
5 | "path": "assignment",
6 | "value": {
7 | "targetRef": {
8 | "oid": "96262f4f-053a-4b0b-8901-b3ec01e3509c",
9 | "type": "RoleType"
10 | }
11 | }
12 | }
13 | }
14 | }
15 |
--------------------------------------------------------------------------------
/samples/stories/unix-management/midpoint-user-example.txt:
--------------------------------------------------------------------------------
1 | Host_Alias HOST = ALL
2 |
3 | midpoint HOST=(ALL) NOPASSWD: /usr/sbin/useradd,/usr/sbin/usermod,/usr/sbin/userdel,/usr/sbin/groupadd,/usr/sbin/groupmod,/usr/sbin/groupdel,/bin/mv,/usr/bin/passwd,/usr/bin/getent,/bin/echo,/usr/bin/tee,/bin/chown,/bin/chmod,/bin/mkdir,/usr/bin/groups,/usr/bin/id,/usr/bin/replace,/bin/rm,/bin/cat
--------------------------------------------------------------------------------
/samples/stories/multitenant-idm-saas/misc/midpoint-crm-flatfile.csv:
--------------------------------------------------------------------------------
1 | name,givenName,familyName,customerName,customerDisplayName,customerContact,disabled
2 | "ultraone-admin","Perry","Houser","ultra1","Ultra One Cloud Inc.","ultraone-admin@example.com","false"
3 | "yourthingsours-admin","Chi","Daachi","yourthingsours","Your Things Ours - Cloud Solutions Inc.","yourthingsours-admin@example.com","false"
4 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/software-developer.xml:
--------------------------------------------------------------------------------
1 |
2 | Software developer
3 |
4 |
5 |
6 |
7 |
8 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/soldier.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Soldier
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/51-black-pearl.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Black pearl
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/53-jolly-roger.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | The Jolly Roger
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/84-ss-normandie.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | SS Normandie
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/resources/databasetable/postgresql/create-table-psql.sql:
--------------------------------------------------------------------------------
1 |
2 | CREATE TABLE idrepo (
3 | userId VARCHAR(16) NOT NULL,
4 | password VARCHAR(16) NOT NULL,
5 | firstName VARCHAR(16),
6 | lastName VARCHAR(16),
7 | fullName VARCHAR(32),
8 | description VARCHAR(256),
9 | disabled BOOLEAN,
10 | PRIMARY KEY (userId)
11 | );
12 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/82-rms-queen-mary.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | RMS Queen Mary
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/52-flying-dutchman.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | The Flying Dutchman
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/54-adventure-galley.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | The Adventure Galley
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/resources/csv/midpoint-hr.csv:
--------------------------------------------------------------------------------
1 | "login","firstname","lastname","disabled"
2 | "001","Alice","Adaway","false"
3 | "002","Bob","Barnfield","false"
4 | "003","Carter","Caufman","false"
5 | "004","Diana","Deboe","true"
6 | "005","Emma","Edkins","false"
7 | "006","Felix","Field","false"
8 | "007","George","Gimby","false"
9 | "008","Henry","Harlow","true"
10 | "009","Isabella","Iron","false"
11 | "010","Jordan","Jinby","false"
--------------------------------------------------------------------------------
/samples/resources/ldap/evo-test-1-mod.ldif:
--------------------------------------------------------------------------------
1 | dn: cn=schema
2 | changetype: modify
3 | add: attributeTypes
4 | attributeTypes: ( 1.3.6.1.4.1.45689.1.4.1.2.1 NAME 'evoT1Attr1' DESC 'Attribute One' SUP name SINGLE-VALUE X-ORIGIN 'user defined' )
5 | -
6 | add: objectClasses
7 | objectClasses: ( 1.3.6.1.4.1.45689.1.4.1.1.1 NAME 'evoT1AuxOc1' DESC 'Testing auxiliary object class' AUXILIARY MAY ( evoT1Attr1 ) X-ORIGIN 'user defined' )
8 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/55-queen-annes-revenge.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Queen Anne's Revenge
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/81-rms-queen-elisabeth.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | RMS Queen Elizabeth
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/83-rms-queen-elisabeth-2.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | RMS Queen Elizabeth II.
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/85-ms-allure-of-the-seas.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | MS Allure Of the Seas
5 |
6 |
7 |
8 |
9 |
10 | true
11 |
--------------------------------------------------------------------------------
/samples/rest/delegate-work-item.json:
--------------------------------------------------------------------------------
1 | {
2 | "delegate" : {
3 | "@type" : "c:WorkItemDelegationRequestType",
4 | "comment" : "Delegating this item to you",
5 | "delegate" : {
6 | "@ns" : "http://prism.evolveum.com/xml/ns/public/types-3",
7 | "oid" : "229487cb-59b6-490b-879d-7a6d925dd08c",
8 | "type" : "c:UserType"
9 | },
10 | "method" : "addAssignees"
11 | }
12 | }
--------------------------------------------------------------------------------
/samples/simulation/tutorial/hr.csv:
--------------------------------------------------------------------------------
1 | ident,firstname,lastname,email,phone,note
2 | 1,John,Smith,jsmith1@evolveum.com,+421-123-456-001,
3 | 2,John,Smith,jsmith2@evolveum.com,+421-123-456-002,
4 | 3,Alice,Green,agreen3@evolveum.com,+421-123-456-003,
5 | 4,Robert,Black,rblack4@evolveum.com,00421-123-456-004,
6 | 5,Robert,Black,rblack5@evolveum.com,+421-123-456-005,Person different from rblack4
7 | 6,John,Johnson,,+421-123-456-006,no account and no email (yet)
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/roles/random-role.xml:
--------------------------------------------------------------------------------
1 |
2 | Random role
3 | Random business role, for playing around with.
4 |
5 |
6 |
7 | true
8 |
9 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/invoice-clerk.xml:
--------------------------------------------------------------------------------
1 |
2 | Invoice clerk
3 | Responsible for processing invoices, invoice payments, corrections, etc.
4 |
5 |
6 |
7 |
8 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/policies/nda.xml:
--------------------------------------------------------------------------------
1 |
2 | NDA
3 | Non-disclosure agreement clearance, applied to organizations/users that have signed the agreement.
4 |
5 |
6 |
7 |
8 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/orgs/40-ships.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Ships
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/object-collections/object-collection-all-users.xml:
--------------------------------------------------------------------------------
1 |
4 | All enabled users
5 | UserType
6 |
7 | activation/effectiveStatus = "enabled"
8 |
9 |
--------------------------------------------------------------------------------
/samples/demo/renaissance/readme.adoc:
--------------------------------------------------------------------------------
1 | Renaissance demo samples in this directory are not maintained anymore.
2 |
3 | For actual up-to-date version of the files please, go to:
4 |
5 | https://github.com/Evolveum/midpoint-kubernetes/tree/main/midpoint-live-demo/kustomize-base/renaissance-demo-config
6 |
7 | The samples are maintained together with demo Kubernetes configuration to provide people option to run our whole demo in their (Kubernetes) environment:
8 | https://github.com/Evolveum/midpoint-kubernetes/tree/main/midpoint-live-demo
9 |
--------------------------------------------------------------------------------
/samples/associations/dms/scripts/TestScript.groovy:
--------------------------------------------------------------------------------
1 | import common.ScriptedSqlUtils
2 | import groovy.sql.Sql
3 | import org.identityconnectors.common.logging.Log
4 |
5 | import java.sql.Connection
6 |
7 | def log = log as Log
8 | def connection = connection as Connection
9 |
10 | log.info("Entering " + operation + " Script")
11 |
12 | List TABLES = [
13 | BaseScript.TABLE_USERS
14 | ]
15 |
16 | def sql = new Sql(connection)
17 |
18 | sql.withTransaction {
19 | ScriptedSqlUtils.testConnection(sql, TABLES)
20 | }
--------------------------------------------------------------------------------
/samples/resources/ldap/evo-test-1.ldif:
--------------------------------------------------------------------------------
1 | dn: cn=schema
2 | objectClass: top
3 | objectClass: ldapSubentry
4 | objectClass: subschema
5 | cn: schema
6 | # Evolveum Testing 1 LDAP Schema
7 | #
8 | # Copyright (c) 2017 Evolveum
9 | #
10 | attributeTypes: ( 1.3.6.1.4.1.45689.1.4.1.2.1 NAME 'evoT1Attr1' DESC 'Attribute One' SUP name SINGLE-VALUE X-ORIGIN 'user defined' )
11 | objectClasses: ( 1.3.6.1.4.1.45689.1.4.1.1.1 NAME 'evoT1AuxOc1' DESC 'Testing auxiliary object class' AUXILIARY MAY ( evoT1Attr1 ) X-ORIGIN 'user defined' )
12 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/emma.xml:
--------------------------------------------------------------------------------
1 |
2 | emma
3 | Perfectly ordinary employee.
4 |
5 |
6 |
7 | Emma Employee
8 | Emma
9 | Employee
10 |
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/dumb-sailor.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Dumb sailor
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 | true
14 |
--------------------------------------------------------------------------------
/samples/dashboard/report-asynchronous-widget.xml:
--------------------------------------------------------------------------------
1 |
2 | Enabled users report
3 |
4 |
5 |
6 |
7 |
8 | true
9 | onlyWidget
10 |
11 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/object-collections/object-collection-sailor.xml:
--------------------------------------------------------------------------------
1 |
4 | Sailors
5 | RoleType
6 |
7 | archetypeRef matches (oid = "886833b6-b700-418d-9a5e-0abe6894720a" and targetType = ArchetypeType)
8 |
9 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/object-collections/object-collection-government.xml:
--------------------------------------------------------------------------------
1 |
4 | Government
5 | RoleType
6 |
7 | archetypeRef matches (oid = "cee99b9e-afca-4cb9-b72b-6956d7621458" and targetType = ArchetypeType)
8 |
9 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/tom.xml:
--------------------------------------------------------------------------------
1 |
2 | tom
3 | Temporary worker. Does not have NDA, does not need NDA.
4 |
5 |
6 |
7 | Tom Temporary
8 | Tom
9 | Temporary
10 |
11 |
--------------------------------------------------------------------------------
/samples/rest/notify-change-modify-password.json:
--------------------------------------------------------------------------------
1 | {
2 | "resourceObjectShadowChangeDescription": {
3 | "oldShadowOid": "062ac29f-f296-4824-aeab-9a0feb9e8bd3",
4 | "objectDelta": {
5 | "@ns": "http://prism.evolveum.com/xml/ns/public/types-3",
6 | "oid": "062ac29f-f296-4824-aeab-9a0feb9e8bd3",
7 | "changeType": "modify",
8 | "objectType": "ShadowType",
9 | "itemDelta": {
10 | "modificationType": "replace",
11 | "path": "credentials/password/value",
12 | "value": "paSSword123"
13 | }
14 | }
15 | }
16 | }
--------------------------------------------------------------------------------
/samples/resources/openldap/repltest/master1-repl.ldif:
--------------------------------------------------------------------------------
1 | dn: olcDatabase={1}mdb,cn=config
2 | changetype: modify
3 | add: olcSyncRepl
4 | olcSyncRepl: rid=100
5 | provider=ldap://ldapmaster2.example.com:389/
6 | bindmethod=simple
7 | binddn="cn=replication manager,ou=Administrators,dc=repltest,dc=evolveum,dc=com"
8 | credentials=rsecret
9 | searchbase="dc=repltest,dc=evolveum,dc=com"
10 | scope=sub
11 | schemachecking=on
12 | type=refreshAndPersist
13 | retry="30 5 300 3"
14 | interval=00:00:05:00
15 | -
16 | add: olcMirrorMode
17 | olcMirrorMode: TRUE
18 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/services/app-crm.xml:
--------------------------------------------------------------------------------
1 |
4 | CRM
5 | Customer relationship management system. Contains customer database and internal sales information.
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/services/website.xml:
--------------------------------------------------------------------------------
1 |
2 | Public Website
3 | Company website, contains public information only.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/associations/dms/archetype-document-store.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
11 | document-store
12 | Document Store
13 |
14 |
15 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/helper.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Helper
5 |
6 |
7 |
8 |
9 |
10 |
11 | end-user
12 |
13 |
14 |
15 | true
16 |
--------------------------------------------------------------------------------
/samples/rest/modify-user-assign-role.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 | add
7 | c:assignment
8 |
9 |
10 |
11 |
12 |
13 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/README.adoc:
--------------------------------------------------------------------------------
1 | = Information Classification Sample: SK NIS1
2 |
3 | This is midPoint configuration sample, modeling information classification setting roughly following Slovak cybersecurity legislation, which is based on EU NIS directive.
4 | The sample defines classification for systems of Category I, Category II and Category III, together with appropriate clearances and policy rules.
5 |
6 | For further details see: https://docs.evolveum.com/midpoint/reference/master/roles-policies/classification/
7 |
8 | The sample is created for midPoint 4.9 and later.
9 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/research-database-reader.xml:
--------------------------------------------------------------------------------
1 |
2 | Research database reader
3 | Read access to research database
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/services/app-website.xml:
--------------------------------------------------------------------------------
1 |
4 | Public Website
5 | Company website, contains public information only. Access to the website is managed using LDAP groups.
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/bulk/assignRoleWithActivationToUser.yaml:
--------------------------------------------------------------------------------
1 | ---
2 | search:
3 | type: UserType
4 | searchFilter:
5 | text: 'name =[polyStringNorm] "boss1"'
6 | action:
7 | type: modify
8 | parameter:
9 | name: delta
10 | value:
11 | itemDelta:
12 | modificationType: add
13 | path: assignment
14 | value:
15 | targetRef:
16 | oid: "00000000-0000-0000-0000-00000000000a"
17 | type: RoleType
18 | activation:
19 | effectiveStatus: enabled
20 | validFrom: "2016-11-30T00:00:00.000+01:00"
21 | validTo: "2016-12-28T00:00:00.000+01:00"
22 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/website-blogger.xml:
--------------------------------------------------------------------------------
1 |
2 | Website blogger
3 | Access to personal blog on website. Fairly basic, non-sensitive access.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/software-development-mentor.xml:
--------------------------------------------------------------------------------
1 |
2 | Software development mentor
3 | Ad-hoc role, not given by any kind of work position or organization. It has to be requested and approved.
4 |
5 |
6 |
7 |
8 | true
9 |
10 |
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/services/app-project-management.xml:
--------------------------------------------------------------------------------
1 |
4 | Project Management
5 | Project management application. Tracks and coordinates projects and tasks.
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/rest/rpc-recompute-input-filter.json:
--------------------------------------------------------------------------------
1 | {
2 | "@ns" : "http://midpoint.evolveum.com/xml/ns/public/model/scripting-3",
3 | "executeScript" : {
4 | "pipeline" : [ {
5 | "@element" : "action",
6 | "type" : "resolve"
7 | }, {
8 | "@element" : "action",
9 | "type" : "recompute"
10 | } ],
11 | "input" : {
12 | "value" : {
13 | "@type" : "c:ObjectReferenceType",
14 | "oid" : "a9885c61-c442-42d8-af34-8182a8653e3c",
15 | "type" : "UserType"
16 | }
17 | },
18 | "options" : {
19 | "continueOnAnyError" : "true"
20 | }
21 | }
22 | }
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/services/management-information-system.xml:
--------------------------------------------------------------------------------
1 |
2 | Management information system
3 | Internal information for management decision-making.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/README.adoc:
--------------------------------------------------------------------------------
1 | = Request access webinar
2 |
3 | This directory contains configuration objects that were used to showcase configuration possibilities of request access feature for the webinar.
4 |
5 | == Notes
6 |
7 | * Authorizations in these samples were simplified, e.g. users have more authorizations than needed.
8 | Reason for this is to make the samples easier to understand, since discussion about authorizations was not primary goal of the webinar.
9 | ** If you want to use these samples in your own system, you should adjust the authorizations to match your own system.
10 |
11 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/website-statistics-access.xml:
--------------------------------------------------------------------------------
1 |
2 | Website statistics access
3 | Read access to website statistics. Still not very sensitive access.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/rest/task-recompute-members-employee.json:
--------------------------------------------------------------------------------
1 | {
2 | "task" : {
3 | "name" : "Recompute all direct members of Role Basic Employee",
4 | "schedulingState" : "ready",
5 | "binding" : "loose",
6 | "activity" : {
7 | "work" : {
8 | "recomputation" : {
9 | "objects" : {
10 | "type" : "UserType",
11 | "query" : {
12 | "filter" : {
13 | "text" : "assignment matches (targetRef matches (oid = '96262f4f-053a-4b0b-8901-b3ec01e3509c'))"
14 | }
15 | }
16 | }
17 | }
18 | }
19 | }
20 | }
21 | }
--------------------------------------------------------------------------------
/test-setenv.sh:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env bash
2 |
3 | # Variables used by midpoint-samples release/next scripts since test.sh needs existing postgresql database
4 | # to execute test suite. Database has to have correct schema (tables, sequences, etc.) already present.
5 | JDBC_URL=
6 | JDBC_USERNAME=
7 | JDBC_PASSWORD=
8 |
9 | if [ -z "$POSTGRES_JDBC_URL" ]; then
10 | export POSTGRES_JDBC_URL=$JDBC_URL
11 | fi
12 |
13 | if [ -z "$POSTGRES_JDBC_USERNAME" ]; then
14 | export POSTGRES_JDBC_USERNAME=$JDBC_USERNAME
15 | fi
16 |
17 | if [ -z "$POSTGRES_JDBC_PASSWORD" ]; then
18 | export POSTGRES_JDBC_PASSWORD=$JDBC_PASSWORD
19 | fi
20 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/policies/special-cybersecurity-training.xml:
--------------------------------------------------------------------------------
1 |
2 | Special cybersecurity training
3 |
4 | Clearance that attests that the user passed through special training of information security practices.
5 | Requirement for granting access to restricted data.
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/services/restricted-research-database.xml:
--------------------------------------------------------------------------------
1 |
2 | Restricted research database
3 | Database containing sensitive data on secret research projects.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/information-security-auditor.xml:
--------------------------------------------------------------------------------
1 |
2 | Information security auditor
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/information-security-manager.xml:
--------------------------------------------------------------------------------
1 |
2 | Information security manager
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/invoice-supervisor.xml:
--------------------------------------------------------------------------------
1 |
2 | Invoice Supervisor
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/information-security-specialist.xml:
--------------------------------------------------------------------------------
1 |
2 | Information security specialist
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/collaboration-platform-user.xml:
--------------------------------------------------------------------------------
1 |
2 | Collaboration platform user
3 | Regular user access to collaboration platform. Common access rights suitable for most users.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/business-analyst.xml:
--------------------------------------------------------------------------------
1 |
2 | Business analyst
3 | TODO.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/services/collaboration-platform.xml:
--------------------------------------------------------------------------------
1 |
2 | Collaboration platform
3 | System for internal team collaboration. Contains meeting notes, memos, plans ... lots of internal stuff.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/services/app-collaboration-platform.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform
5 | System for team collaboration, used for internal collaboration, as well as collaboration with partners and suppliers. Contains meeting notes, memos, plans ...
6 |
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/compliance/.gitignore:
--------------------------------------------------------------------------------
1 | ### IntelliJ IDEA ###
2 | .idea
3 | *.iws
4 | *.iml
5 | *.ipr
6 |
7 | ### Eclipse ###
8 | .apt_generated
9 | .classpath
10 | .factorypath
11 | .project
12 | .settings
13 | .springBeans
14 | .sts4-cache
15 |
16 | ### NetBeans ###
17 | /nbproject/private/
18 | /nbbuild/
19 | /dist/
20 | /nbdist/
21 | /.nb-gradle/
22 | build/
23 | !**/src/main/**/build/
24 | !**/src/test/**/build/
25 |
26 | ### VS Code ###
27 | .vscode/
28 |
29 | ### Mac OS ###
30 | .DS_Store
31 |
32 | target/
33 | !.mvn/wrapper/maven-wrapper.jar
34 | !**/src/main/**/target/
35 | !**/src/test/**/target/
36 |
37 | .cache
38 |
39 | scratches
40 |
41 | credentials.kdbx
42 |
43 |
--------------------------------------------------------------------------------
/samples/compliance/objects/postponed/390-role-catalog.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | Role Catalog
11 | Root for Role catalog
12 | true
13 | 500
14 |
15 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/policies/360-classification-tlp-clear.xml:
--------------------------------------------------------------------------------
1 |
2 | TLP:CLEAR
3 | Disclosure is not limited. Recipients may share this information without restriction. Information is subject to standard copyright rules.
4 | Classification according to Traffic Light Protocol (TLP).
5 |
6 | archetype
7 |
8 |
9 |
10 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/wendy.xml:
--------------------------------------------------------------------------------
1 |
2 | wendy
3 | Webmaster, has some privileged access.
4 |
5 |
6 |
7 |
8 |
9 |
10 | Wendy Webmaster
11 | Wendy
12 | Webmaster
13 |
14 |
--------------------------------------------------------------------------------
/samples/resources/scriptedsql/BaseScript.groovy:
--------------------------------------------------------------------------------
1 | import org.identityconnectors.framework.common.objects.ObjectClass
2 |
3 | class BaseScript extends Script {
4 |
5 | public static final String GROUP_NAME = "Group"
6 |
7 | public static final ObjectClass GROUP = new ObjectClass(BaseScript.GROUP_NAME)
8 |
9 | public static final String ORGANIZATION_NAME = "Organization"
10 |
11 | public static final ObjectClass ORGANIZATION = new ObjectClass(BaseScript.ORGANIZATION_NAME)
12 |
13 | public static final String TABLE_USER = "Users"
14 | public static final String TABLE_GROUPS = "Groups"
15 |
16 | @Override
17 | Object run() {
18 | return null
19 | }
20 | }
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/.gitignore:
--------------------------------------------------------------------------------
1 | ### IntelliJ IDEA ###
2 | .idea
3 | *.iws
4 | *.iml
5 | *.ipr
6 |
7 | ### Eclipse ###
8 | .apt_generated
9 | .classpath
10 | .factorypath
11 | .project
12 | .settings
13 | .springBeans
14 | .sts4-cache
15 |
16 | ### NetBeans ###
17 | /nbproject/private/
18 | /nbbuild/
19 | /dist/
20 | /nbdist/
21 | /.nb-gradle/
22 | build/
23 | !**/src/main/**/build/
24 | !**/src/test/**/build/
25 |
26 | ### VS Code ###
27 | .vscode/
28 |
29 | ### Mac OS ###
30 | .DS_Store
31 |
32 | target/
33 | !.mvn/wrapper/maven-wrapper.jar
34 | !**/src/main/**/target/
35 | !**/src/test/**/target/
36 |
37 | .cache
38 |
39 | scratches
40 |
41 | credentials.kdbx
42 |
43 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/simon.xml:
--------------------------------------------------------------------------------
1 |
2 | simon
3 | System administrator, has some privileged access.
4 |
5 |
6 |
7 |
8 |
9 |
10 | Simon Sysadmin
11 | Simon
12 | Sysadmin
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/postponed/role-catalog-client-acquisition.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | RC001
11 | Client acquisition
12 |
13 |
14 |
15 |
--------------------------------------------------------------------------------
/samples/compliance/objects/postponed/role-catalog-customer-support.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | RC002
11 | Customer support
12 |
13 |
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/website-logs.xml:
--------------------------------------------------------------------------------
1 |
4 | Public website: Log access
5 | Read-only access to content, logs and other records
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/turner.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | turner
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 | qwe123
15 |
16 |
17 |
18 |
19 | Will
20 | Turner
21 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-hr-import.xml:
--------------------------------------------------------------------------------
1 |
4 | hr-import
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/associations/dms/scripts/Constants.groovy:
--------------------------------------------------------------------------------
1 | import common.ColumnPrefixMapper
2 |
3 | class Constants {
4 |
5 | public static final ColumnPrefixMapper PREFIX_MAPPER_ACCOUNT = new ColumnPrefixMapper("a")
6 |
7 | public static final ColumnPrefixMapper PREFIX_MAPPER_GROUP = new ColumnPrefixMapper("g")
8 |
9 | public static final Class UID_TYPE_ACCOUNT = Integer
10 | public static final Class UID_TYPE_GROUP = Integer
11 |
12 | public static final int SYNC_MAX_ROWS = 5000
13 |
14 | public static final String QUERY_ACCOUNT = "select " + Constants.PREFIX_MAPPER_ACCOUNT.defaultPrefix + ".* from " + BaseScript.TABLE_USER + " " + Constants.PREFIX_MAPPER_ACCOUNT.defaultPrefix
15 | }
16 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/website-administrator.xml:
--------------------------------------------------------------------------------
1 |
2 | Website administrator
3 | Administration access to website.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/roles/portfolio-management-user.xml:
--------------------------------------------------------------------------------
1 |
4 | Portfolio management: User
5 | Common user access to Portfolio management system.
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/crm-customer-database-read.xml:
--------------------------------------------------------------------------------
1 |
4 | CRM: Customer database read
5 | Read-only access to customer database.
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/crm-customer-database-write.xml:
--------------------------------------------------------------------------------
1 |
4 | CRM: Customer database write
5 | Read-write access to customer database.
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-ldap-import.xml:
--------------------------------------------------------------------------------
1 |
4 | ldap-import
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment/users/adam.xml:
--------------------------------------------------------------------------------
1 |
2 | adam
3 | Experimental user
4 |
5 |
6 |
7 | Adam Experimental
8 | Adam
9 | Experimental
10 |
11 |
12 |
13 | qwe123
14 |
15 |
16 |
17 |
18 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/ragetti.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | ragetti
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 | qwe123
15 |
16 |
17 |
18 |
19 | Ian
20 | Ragetti
21 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/marketing-analyst.xml:
--------------------------------------------------------------------------------
1 |
2 | Marketing analyst
3 | Business role giving access to both Cat.I and Cat.II systems.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/webmaster.xml:
--------------------------------------------------------------------------------
1 |
2 | Webmaster
3 | Access to website administration, also common access to collaboration tools.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/petra.xml:
--------------------------------------------------------------------------------
1 |
2 | petra
3 | Extraordinary employee, cleared for access to the most secret of secrets.
4 |
5 |
6 |
7 |
8 |
9 |
10 | Petra Privileged
11 | Petra
12 | Privileged
13 |
14 |
--------------------------------------------------------------------------------
/samples/introductionToFlexibleAuthentication.2024-05-16-webinar/README.adoc:
--------------------------------------------------------------------------------
1 | = Introduction to Flexible Authentication Webinar 2024-05-16
2 |
3 | Here are configuration objects used by the demonstration of flexible authentication webinar presented on May 16, 2024.
4 |
5 | == How to Use
6 |
7 | . Prepare a clean midPoint 4.8.3 home directory, running against *native PostgreSQL database*.
8 | . Copy `user-extension.xsd` file into `schema` subdirectory
9 | . Start midPoint.
10 | . For simple example with emergency sequence upload `emergency-policy.csv` and go to `https://MIDPOINT_ADDRESS/midpoint/auth/emergency`.
11 | . For complex demo upload other object in order by name of file and go to `https://MIDPOINT_ADDRESS/midpoint`.
12 | . Enjoy!
13 |
--------------------------------------------------------------------------------
/samples/resources/ad-ldap/AD simple/tasks/10-test-all-resources.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
6 | c:ResourceType
7 |
9 |
10 | abstract != true and template != true
11 |
12 |
13 | test-resource
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/resources/databasetable/create-simple-idm-table.mysql:
--------------------------------------------------------------------------------
1 | /*!40101 SET NAMES utf8 */;
2 | /*!40101 SET character_set_client = utf8 */;
3 |
4 | CREATE DATABASE IF NOT EXISTS midpoint_tests CHARACTER SET utf8 COLLATE utf8_bin;
5 |
6 | CREATE TABLE midpoint_tests.idrepo (
7 | userId VARCHAR(16) NOT NULL,
8 | password VARCHAR(16) NOT NULL,
9 | firstName VARCHAR(16),
10 | lastName VARCHAR(16),
11 | fullName VARCHAR(32),
12 | description VARCHAR(256),
13 | disabled BOOL,
14 | PRIMARY KEY (userId)
15 | ) ENGINE=MyISAM DEFAULT CHARSET=utf8;
16 |
17 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@'%' IDENTIFIED BY 'secret';
18 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@localhost IDENTIFIED BY 'secret';
19 |
20 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/collaboration-limted-user.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform: Limited user
5 | Read-only access to collaboration platform files. Limited access.
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/collaboration-platform-admin.xml:
--------------------------------------------------------------------------------
1 |
2 | Collaboration platform administrator
3 | Administration access to collaboration platform.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/resources/databasetable/create-simple-idm-table-sync.mysql:
--------------------------------------------------------------------------------
1 | /*!40101 SET NAMES utf8 */;
2 | /*!40101 SET character_set_client = utf8 */;
3 |
4 | CREATE DATABASE IF NOT EXISTS midpoint_tests CHARACTER SET utf8 COLLATE utf8_bin;
5 |
6 | CREATE TABLE midpoint_tests.idrepo (
7 | userId VARCHAR(16) NOT NULL,
8 | password VARCHAR(16) NOT NULL,
9 | firstName VARCHAR(16),
10 | lastName VARCHAR(16),
11 | fullName VARCHAR(32),
12 | disabled BOOL,
13 | change_timestamp TIMESTAMP,
14 | PRIMARY KEY (userId)
15 | ) ENGINE=MyISAM DEFAULT CHARSET=utf8;
16 |
17 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@'%' IDENTIFIED BY 'secret';
18 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@localhost IDENTIFIED BY 'secret';
19 |
20 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/influencer.xml:
--------------------------------------------------------------------------------
1 |
2 | Influencer
3 | Influencer, improving company public relations on social media.
4 |
5 | Ad-hoc role, not given by any kind of work position or organization. It has to be requested and approved.
6 | It may be granted to external cooperators as well.
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/website-editor.xml:
--------------------------------------------------------------------------------
1 |
4 | Public website: Editor
5 | Editor of website content, content manager (read-write access to almost everything, except configuration)
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/users/charlie.xml:
--------------------------------------------------------------------------------
1 |
2 | charlie
3 | Business consultant with a long-term engagement. Needs access to internal data, hence he has NDA signed.
4 |
5 |
6 |
7 |
8 |
9 |
10 | Charlie Consultant
11 | Charlie
12 | Consultant
13 |
14 |
--------------------------------------------------------------------------------
/samples/resources/databasetable/create-simple-idm-table-2.mysql:
--------------------------------------------------------------------------------
1 | /*!40101 SET NAMES utf8 */;
2 | /*!40101 SET character_set_client = utf8 */;
3 |
4 | CREATE DATABASE IF NOT EXISTS midpoint_tests CHARACTER SET utf8 COLLATE utf8_bin;
5 |
6 | CREATE TABLE midpoint_tests.idrepo2 (
7 | id INT(10) NOT NULL auto_increment,
8 | userId VARCHAR(16) NOT NULL,
9 | password VARCHAR(16) NOT NULL,
10 | firstName VARCHAR(16),
11 | lastName VARCHAR(16),
12 | fullName VARCHAR(32),
13 | pin INT(4),
14 | disabled BOOL,
15 | PRIMARY KEY (id)
16 | ) ENGINE=MyISAM DEFAULT CHARSET=utf8;
17 |
18 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@'%' IDENTIFIED BY 'secret';
19 | GRANT ALL PRIVILEGES on midpoint_tests.* TO midpoint_tests@localhost IDENTIFIED BY 'secret';
20 |
21 |
--------------------------------------------------------------------------------
/samples/object-counts/systemConfiguration/object-templates.txt:
--------------------------------------------------------------------------------
1 |
2 |
3 | .... configure in systemConfiguration.xml
4 |
5 |
6 |
7 | UserType
8 |
9 |
10 |
11 | RoleType
12 |
13 |
14 |
15 | ServiceType
16 |
17 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/services/app-crm.xml:
--------------------------------------------------------------------------------
1 |
4 | CRM
5 | Customer relationship management system. Contains customer database and internal sales information.
6 | Alice is owner of this application by default.
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/crm-customer-database-admin.xml:
--------------------------------------------------------------------------------
1 |
4 | CRM: Customer database admin
5 | Administration access to customer database.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/resources/ad-ldap/AD simple/upload.sh:
--------------------------------------------------------------------------------
1 | #!/bin/bash
2 | midpointURL="${1:-http://localhost:8080}"
3 | ls resources | while read line
4 | do
5 | echo -n "resources/${line} .:. "
6 | grep "" "resources/${line}" | head -1 | cut -d ">" -f 2 | cut -d "<" -f 1
7 | curl --user "administrator:5ecr3t" -H "Content-Type: application/xml" -X POST ${midpointURL}/midpoint/ws/rest/resources?options=raw --data-binary @resources/${line} -s -D /dev/tty >/dev/null
8 | done
9 | ls tasks | while read line
10 | do
11 | echo -n "tasks/${line} .:. "
12 | grep "" "tasks/${line}" | head -1 | cut -d ">" -f 2 | cut -d "<" -f 1
13 | curl --user "administrator:5ecr3t" -H "Content-Type: application/xml" -X POST ${midpointURL}/midpoint/ws/rest/tasks --data-binary @tasks/${line} -s -D /dev/tty >/dev/null
14 | done
15 |
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/services/app-portfolio-management.xml:
--------------------------------------------------------------------------------
1 |
4 | Portfolio Management
5 | Portfolio management application. Manages client portfolios, tracks performance, and ensure compliance with investment strategies and regulations.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/roles/portfolio-management-admin.xml:
--------------------------------------------------------------------------------
1 |
4 | Portfolio management: Administrator
5 | Administration access to Portfolio management system.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/collaboration-admin.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform: Administrator
5 | Administration access to collaboration platform.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/collaboration-ordinary-user.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform: Ordinary user
5 | Read-write access to collaboration platform, access to usual (non-secret) files, own files, own e-mails, shared calendars, notes, etc.
6 |
7 |
8 |
9 |
10 |
11 |
12 | true
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/website-admin.xml:
--------------------------------------------------------------------------------
1 |
4 | Public website: Admin
5 | Administration access to website
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 | true
16 |
17 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/archetypes/archetype-user-army.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Archetype: Army
5 |
6 |
7 |
8 |
9 | Army
10 |
11 | blue fa-solid fa-person-rifle
12 | green
13 |
14 |
15 |
16 |
17 | holderType
18 |
19 | UserType
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/resources/scriptedsql/TestScript.groovy:
--------------------------------------------------------------------------------
1 | import common.ScriptedSqlUtils
2 | import groovy.sql.Sql
3 | import org.forgerock.openicf.connectors.scriptedsql.ScriptedSQLConfiguration
4 | import org.forgerock.openicf.misc.scriptedcommon.OperationType
5 | import org.identityconnectors.common.logging.Log
6 |
7 | import java.sql.Connection
8 |
9 | def log = log as Log
10 | def operation = operation as OperationType
11 | def connection = connection as Connection
12 | def configuration = configuration as ScriptedSQLConfiguration
13 |
14 | log.info("Entering " + operation + " Script")
15 |
16 | List TABLES = [
17 | BaseScript.TABLE_USER,
18 | BaseScript.TABLE_GROUPS
19 | ]
20 |
21 | def sql = new Sql(connection)
22 |
23 | sql.withTransaction {
24 | ScriptedSqlUtils.testConnection(sql, TABLES)
25 | }
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/users/105-audrey.xml:
--------------------------------------------------------------------------------
1 |
2 | audrey
3 | Cybersecurity auditor
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 | Audrey Auditor
14 | Audrey
15 | Auditor
16 | 105
17 |
18 |
19 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/system-administrator.xml:
--------------------------------------------------------------------------------
1 |
2 | System administrator
3 | Incredibly powerful, very privileged role. Too dangerous.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/pintel.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | pintel
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 | qwe123
18 |
19 |
20 |
21 |
22 | John
23 | Pintel
24 |
--------------------------------------------------------------------------------
/samples/rest/policy-items-definition-generate-role.xml:
--------------------------------------------------------------------------------
1 |
7 |
8 |
9 | identifier
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/README.adoc:
--------------------------------------------------------------------------------
1 | = Compliance Configuration
2 |
3 | This project is focused at developing and testing midPoint compliance configuration.
4 |
5 | It configuration is suitable for demo usage, it is not meant for production use.
6 |
7 | This is midPoint Studio project.
8 | The objects need to be uploaded in correct order, and in some cases several times (there are dependencies between objects that Studio cannot handle).
9 | Recommended order of directory upload:
10 |
11 | . sample-book
12 | . experiment-tlp
13 | . demo
14 |
15 | If you get errors while uploading any particular directory, just try one more time, until the upload is clean.
16 | The `demo` directory should be uploaded or re-uploaded last.
17 |
18 | The sample is created for midPoint 4.10 (master branch).
19 | It is tested with midPoint docker image ("devel" tag).
20 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/gibbs.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | gibbs
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 | qwe123
19 |
20 |
21 |
22 |
23 | Joshame
24 | Gibbs
25 |
--------------------------------------------------------------------------------
/samples/associations/dms/system-configuration-snippet.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | [dms:read]
6 | member
7 | administration
8 | governance
9 |
10 |
11 | [dms:write]
12 | member
13 | administration
14 | governance
15 |
16 |
17 | [dms:admin]
18 | manager
19 | administration
20 | governance
21 |
22 |
23 |
24 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/sparrow.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | sparrow
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 | qwe123
19 |
20 |
21 |
22 |
23 | Jack
24 | Sparrow
25 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/swann.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | swann
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 | qwe123
19 |
20 |
21 |
22 |
23 | Weatherby
24 | Swann
25 |
--------------------------------------------------------------------------------
/samples/resources/eduid/basic-eduid-affiliation.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 | Basic affiliation
7 |
8 |
9 |
10 |
11 | account
12 | default
13 |
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/roles/terrible-role.xml:
--------------------------------------------------------------------------------
1 |
2 | Terrible role
3 | Nightmarish business role giving access to all the systems we have.
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/resources/ldap/midpoint-schema-example-mod.ldif:
--------------------------------------------------------------------------------
1 | dn: uid=jbond, ou=People, dc=example,dc=com
2 | changetype: modify
3 | add: objectClass
4 | objectClass: midPointPerson
5 |
6 | dn: uid=cptjack, ou=People, dc=example,dc=com
7 | changetype: modify
8 | add: objectClass
9 | objectClass: midPointPerson
10 |
11 | dn: uid=will, ou=People, dc=example,dc=com
12 | changetype: modify
13 | add: objectClass
14 | objectClass: midPointPerson
15 |
16 | dn: uid=will, ou=People, dc=example,dc=com
17 | changetype: modify
18 | add: midPointAccountStatus
19 | midPointAccountStatus: enabled
20 |
21 | dn: uid=barbossa, ou=People, dc=example,dc=com
22 | changetype: modify
23 | add: objectClass
24 | objectClass: midPointPerson
25 |
26 | dn: uid=barbossa, ou=People, dc=example,dc=com
27 | changetype: modify
28 | add: midPointAccountStatus
29 | midPointAccountStatus: disabled
30 |
--------------------------------------------------------------------------------
/samples/resources/scriptedsql/common/ColumnPrefixMapper.groovy:
--------------------------------------------------------------------------------
1 | package common
2 |
3 | /**
4 | * Created by Viliam Repan (lazyman).
5 | */
6 | class ColumnPrefixMapper {
7 |
8 | //
9 | Map columns
10 |
11 | //
12 | Map prefixes
13 |
14 | String defaultPrefix
15 |
16 | ColumnPrefixMapper(String defaultPrefix) {
17 | this(defaultPrefix, [:])
18 | }
19 |
20 | ColumnPrefixMapper(String defaultPrefix, Map columns) {
21 | this(defaultPrefix, columns, [:])
22 | }
23 |
24 | ColumnPrefixMapper(String defaultPrefix, Map columns, Map prefixes) {
25 | this.columns = columns
26 | this.prefixes = prefixes
27 | this.defaultPrefix = defaultPrefix
28 | }
29 | }
30 |
--------------------------------------------------------------------------------
/samples/associations/dms/scripts/common/ColumnPrefixMapper.groovy:
--------------------------------------------------------------------------------
1 | package common
2 |
3 | /**
4 | * Created by Viliam Repan (lazyman).
5 | */
6 | class ColumnPrefixMapper {
7 |
8 | //
9 | Map columns
10 |
11 | //
12 | Map prefixes
13 |
14 | String defaultPrefix
15 |
16 | ColumnPrefixMapper(String defaultPrefix) {
17 | this(defaultPrefix, [:])
18 | }
19 |
20 | ColumnPrefixMapper(String defaultPrefix, Map columns) {
21 | this(defaultPrefix, columns, [:])
22 | }
23 |
24 | ColumnPrefixMapper(String defaultPrefix, Map columns, Map prefixes) {
25 | this.columns = columns
26 | this.prefixes = prefixes
27 | this.defaultPrefix = defaultPrefix
28 | }
29 | }
30 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/users/norrington.xml:
--------------------------------------------------------------------------------
1 |
4 |
5 | norrington
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 | qwe123
19 |
20 |
21 |
22 |
23 | Johnatan
24 | Norrington
25 |
--------------------------------------------------------------------------------
/samples/resources/openldap/midpoint-schema-example-mod.ldif:
--------------------------------------------------------------------------------
1 | dn: uid=jbond, ou=People, dc=example,dc=com
2 | changetype: modify
3 | add: objectClass
4 | objectClass: midPointPerson
5 |
6 | dn: uid=cptjack, ou=People, dc=example,dc=com
7 | changetype: modify
8 | add: objectClass
9 | objectClass: midPointPerson
10 |
11 | dn: uid=will, ou=People, dc=example,dc=com
12 | changetype: modify
13 | add: objectClass
14 | objectClass: midPointPerson
15 |
16 | dn: uid=will, ou=People, dc=example,dc=com
17 | changetype: modify
18 | add: midPointAccountStatus
19 | midPointAccountStatus: enabled
20 |
21 | dn: uid=barbossa, ou=People, dc=example,dc=com
22 | changetype: modify
23 | add: objectClass
24 | objectClass: midPointPerson
25 |
26 | dn: uid=barbossa, ou=People, dc=example,dc=com
27 | changetype: modify
28 | add: midPointAccountStatus
29 | midPointAccountStatus: disabled
30 |
--------------------------------------------------------------------------------
/samples/rest/query-all-tasks.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 |
20 |
21 |
--------------------------------------------------------------------------------
/samples/rest/policy-items-definition-validate.xml:
--------------------------------------------------------------------------------
1 |
7 |
8 |
9 | employeeNumber
10 |
11 | true
12 |
13 |
14 |
15 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/data-protection-officer.xml:
--------------------------------------------------------------------------------
1 |
2 | Data protection officer
3 |
4 |
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/services/app-collaboration-platform.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform
5 | System for team collaboration, used for internal collaboration, as well as collaboration with partners and suppliers. Contains meeting notes, memos, plans ...
6 | Peter is owner of this application by default.
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/judge.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Judge
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 | criminal exclusion: Pirate
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 | true
25 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/prisoner.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Prisoner
5 |
6 |
7 |
8 | criminal exclusion: Pirate
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 | true
25 |
--------------------------------------------------------------------------------
/samples/rest/task-report-create.json:
--------------------------------------------------------------------------------
1 | {
2 | "task" : {
3 | "name" : "Export task for all error audit records in 24h ",
4 | "assignment" : {
5 | "targetRef" : {
6 | "oid" : "00000000-0000-0000-0000-000000000511",
7 | "relation" : "org:default",
8 | "type" : "c:ArchetypeType"
9 | }
10 | },
11 | "archetypeRef" : {
12 | "oid" : "00000000-0000-0000-0000-000000000511",
13 | "relation" : "org:default",
14 | "type" : "c:ArchetypeType"
15 | },
16 | "schedulingState" : "ready",
17 | "binding" : "loose",
18 | "activity" : {
19 | "work" : {
20 | "reportExport" : {
21 | "reportRef" : {
22 | "oid" : "579b3765-a2d3-46bc-98e5-3a2414d0accd",
23 | "relation" : "org:default",
24 | "type" : "c:ReportType"
25 | }
26 | }
27 | }
28 | }
29 | }
30 | }
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/archetypes/archetype-role-sailor.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Archetype: Sailor
5 |
6 |
7 |
8 |
9 |
10 | fa-solid fa-ship
11 | green
12 |
13 |
14 |
15 |
16 | holderType
17 |
18 | RoleType
19 |
20 |
21 |
22 |
23 |
24 |
25 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/governor.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Governor
5 |
6 |
7 |
8 |
9 |
10 |
11 |
12 | criminal exclusion: Pirate
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 | true
25 |
--------------------------------------------------------------------------------
/samples/resources/openstack/mandatory-description.xml:
--------------------------------------------------------------------------------
1 |
2 |
3 | Mandatory description
4 |
5 | -
6 | c:description
7 |
8 | presentation
9 | 1
10 |
11 |
12 |
13 |
--------------------------------------------------------------------------------
/samples/resources/msgraph/objects/roles/role-construction-account-graph.xml:
--------------------------------------------------------------------------------
1 |
2 |
7 | Azure Account
8 | Role providing user account on Microsoft Azure cloud.
9 |
10 |
11 |
12 |
13 | account
14 | default
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F10000-example.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F10000
11 | Exemplary Amplified Placeholder Enterprise
12 | ExAmPLE, Inc.
13 | 100
14 | 10000
15 |
16 | archetype
17 |
18 |
19 |
20 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/roles/collaboration-power-user.xml:
--------------------------------------------------------------------------------
1 |
4 | Collaboration platform: Power user
5 | Read-write access to collaboration platform, access to files, including some unusual ones, more applications, etc.
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 | true
16 |
17 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/archetypes/archetype-role-government.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Archetype: Government
5 |
6 |
7 |
8 |
9 |
10 | fa-solid fa-building-shield
11 | pink
12 |
13 |
14 |
15 |
16 | holderType
17 |
18 | RoleType
19 |
20 |
21 |
22 |
23 |
24 |
25 |
--------------------------------------------------------------------------------
/samples/rest/query-users-param.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 |
20 | emailAddress endsWith "@evolveum.com"
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/object-collections/object-collection-users-cat1.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
13 | Category I users
14 | UserType
15 |
16 | extension/accessCategory = "Category I"
17 |
18 |
19 |
20 |
21 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/object-collections/object-collection-users-privileged.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
13 | Privileged users
14 | UserType
15 |
16 | extension/privilegedAccess = true
17 |
18 |
19 |
20 |
21 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/object-collections/object-collection-users-cat2.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
13 | Category II users
14 | UserType
15 |
16 | extension/accessCategory = "Category II"
17 |
18 |
19 |
20 |
21 |
--------------------------------------------------------------------------------
/samples/classification/classification-nis1-sk/objects/object-collections/object-collection-users-cat3.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
13 | Category III users
14 | UserType
15 |
16 | extension/accessCategory = "Category III"
17 |
18 |
19 |
20 |
21 |
--------------------------------------------------------------------------------
/samples/rest/query-livesync-tasks.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 |
20 | category = 'LiveSynchronization'
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/demo/users/susie.xml:
--------------------------------------------------------------------------------
1 |
2 | susie
3 | Suspicious user
4 |
5 |
6 |
7 | apply
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 | Susie Suspicious
20 | Susie
21 | Suspicious
22 |
23 |
--------------------------------------------------------------------------------
/samples/correlation/2024-03-21-webinar/README.adoc:
--------------------------------------------------------------------------------
1 | = Smart Correlation Webinar 2024-03-21
2 |
3 | Here are configuration objects used by the demonstration of smart correlation webinar presented on March 21, 2024.
4 |
5 | == How to Use
6 |
7 | . Prepare a clean midPoint 4.8.2 home directory, running against *native PostgreSQL database*.
8 | . Copy `correlation.xsd` file into `schema` subdirectory
9 | . Start midPoint.
10 | . Replace `/name/of/the/actual/directory/` in `resource-sis-campus-1.xml`, `resource-sis-campus-2.xml`, and `resource-sis-campus-3.xml` with the actual name of the directory where these files reside.
11 | . Provide some data to `sis-campus-1.csv`, `sis-campus-2.csv`, and `sis-campus-3.csv`.
12 | . Upload `template-person.xml` (preferably via MidPoint Studio).
13 | . Upload and test `resource-sis-campus-X.xml` files
14 | . Upload `task-import.xml`, `task-reload-sis-2.xml`, and `task-reload-sis-3.xml`.
15 | . Enjoy!
16 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/services/app-website.xml:
--------------------------------------------------------------------------------
1 |
4 | Public Website
5 | Company website, contains public information only. Access to the website is managed using LDAP groups.
6 | Erin is owner of this application by default.
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
--------------------------------------------------------------------------------
/samples/resources/ldap/evo-test-1.schema:
--------------------------------------------------------------------------------
1 | # Evolveum Testing 1 LDAP Schema
2 | #
3 | # Copyright (c) 2017 Evolveum
4 | #
5 |
6 | objectIdentifier Evolveum 1.3.6.1.4.1.45689
7 |
8 | objectIdentifier Ldap Evolveum:1
9 | objectIdentifier Products Ldap:1
10 | objectIdentifier MidPoint Products:1
11 | objectIdentifier MidPointObjectClass MidPoint:1
12 | objectIdentifier MidPointAttributeType MidPoint:2
13 | objectIdentifier Testing Ldap:4
14 | objectIdentifier Testing1 Testing:1
15 | objectIdentifier Testing1ObjectClass Testing1:1
16 | objectIdentifier Testing1AttributeType Testing1:2
17 |
18 | attributetype ( Testing1AttributeType:1
19 | NAME 'evoT1Attr1'
20 | DESC 'Attribute One'
21 | SUP name
22 | SINGLE-VALUE )
23 |
24 | objectClass ( Testing1ObjectClass:1
25 | NAME 'evoT1AuxOc1'
26 | DESC 'Testing auxiliary object class'
27 | AUXILIARY
28 | MAY ( evoT1Attr1 ) )
29 |
30 |
31 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/policies/360-classification-tlp-green.xml:
--------------------------------------------------------------------------------
1 |
2 | TLP:GREEN
3 | Limited disclosure, restricted to the community. Recipients may share TLP:GREEN information with peers and partner organizations within their community, but not via publicly accessible channels.
4 | Classification according to Traffic Light Protocol (TLP).
5 |
6 | archetype
7 |
8 |
9 |
10 | included-classification-tlp-clear
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/LBE-berlin.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | LBE
11 | Berlin
12 | BE
13 |
14 | eu
15 |
16 |
17 |
18 | archetype
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/LPA-paris.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | LPA
11 | Paris
12 | PA
13 |
14 | eu
15 |
16 |
17 |
18 | archetype
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/LLO-london.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | LLO
11 | London
12 | LO
13 |
14 | world
15 |
16 |
17 |
18 | archetype
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/resources/ad-ldap/AD advanced/lookuptables/adGroupTypes.xml:
--------------------------------------------------------------------------------
1 |
3 | AD group types
4 |
5 | 2
6 |
7 |
8 |
9 | 4
10 |
11 |
12 |
13 | 8
14 |
15 |
16 |
17 | -2147483646
18 |
19 |
20 |
21 | -2147483644
22 |
23 |
24 |
25 | -2147483640
26 |
27 |
28 |
29 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/LEU-eu.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | LEU
11 | European Union
12 | EU
13 |
14 | world
15 |
16 |
17 |
18 | archetype
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/LNY-new-york.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | LNY
11 | New York
12 | NY
13 |
14 | world
15 |
16 |
17 |
18 | archetype
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/resources/cmd/CreateScript.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | #/*
3 | #* Copyright (c) 2010-2017 Evolveum
4 | #*
5 | #* Licensed under the Apache License, Version 2.0 (the "License");
6 | #* you may not use this file except in compliance with the License.
7 | #* You may obtain a copy of the License at
8 | #*
9 | #* http://www.apache.org/licenses/LICENSE-2.0
10 | #*
11 | #* Unless required by applicable law or agreed to in writing, software
12 | #* distributed under the License is distributed on an "AS IS" BASIS,
13 | #* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 | #* See the License for the specific language governing permissions and
15 | #* limitations under the License.
16 | #*/
17 |
18 | # $__NAME__ is icfs:name
19 | # $permissions is attribute permissions (expected as "755")
20 | # TODO: error checking
21 | mkdir "$__NAME__" -m $permissions
22 | # return the directory name
23 | echo "$__NAME__"
24 | exit 0
25 |
26 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/policies/360-classification-tlp-red.xml:
--------------------------------------------------------------------------------
1 |
2 | TLP:RED
3 | Not for disclosure, restricted to participants only. Recipients may not share TLP:RED information with any parties outside of the specific exchange, meeting, or conversation in which it was originally disclosed.
4 | Classification according to Traffic Light Protocol (TLP).
5 |
6 | archetype
7 |
8 |
9 |
10 | included-classification-tlp-amber-strict
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/demo/hogwarts/groups.ldif:
--------------------------------------------------------------------------------
1 | version: 1
2 |
3 | dn: cn=herbologyTeacher,ou=groups,dc=example,dc=com
4 | objectClass: top
5 | objectClass: groupOfNames
6 | cn: herbologyTeacher
7 | member: uid=nobody,dc=example,dc=com
8 |
9 | dn: cn=potionsTeacher,ou=groups,dc=example,dc=com
10 | objectClass: top
11 | objectClass: groupOfNames
12 | cn: potionsTeacher
13 | member: uid=nobody,dc=example,dc=com
14 |
15 | dn: cn=defenceAgainstDarkArts,ou=groups,dc=example,dc=com
16 | objectClass: top
17 | objectClass: groupOfNames
18 | cn: defenceAgainstDarkArts
19 | member: uid=nobody,dc=example,dc=com
20 |
21 | dn: cn=transfigurationTeacher,ou=groups,dc=example,dc=com
22 | objectClass: top
23 | objectClass: groupOfNames
24 | cn: transfigurationTeacher
25 | member: uid=nobody,dc=example,dc=com
26 |
27 | dn: cn=duellingClassroomAccess,ou=groups,dc=example,dc=com
28 | objectClass: top
29 | objectClass: groupOfNames
30 | cn: duellingClassroomAccess
31 | member: uid=nobody,dc=example,dc=com
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-hr-import-simulation-no-result.xml:
--------------------------------------------------------------------------------
1 |
4 | hr-import (simulation, no result)
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 | preview
17 |
18 | development
19 |
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/stories/unix-ldap/other/sequence-gidnumber.xml:
--------------------------------------------------------------------------------
1 |
16 |
17 |
19 | Unix GID numbers
20 | 1101
21 | 10
22 |
23 |
--------------------------------------------------------------------------------
/samples/stories/unix-ldap/other/sequence-uidnumber.xml:
--------------------------------------------------------------------------------
1 |
16 |
17 |
19 | Unix UID numbers
20 | 1101
21 | 10
22 |
23 |
--------------------------------------------------------------------------------
/samples/bulk/assignRoleWithActivationToUser.xml:
--------------------------------------------------------------------------------
1 |
2 | UserType
3 |
4 | name =[polyStringNorm] 'boss1'
5 |
6 |
7 | modify
8 |
9 | delta
10 |
11 |
12 | add
13 | assignment
14 |
15 |
16 |
17 | enabled
18 | 2016-11-30T00:00:00.000+01:00
19 | 2016-12-28T00:00:00.000+01:00
20 |
21 |
22 |
23 |
24 |
25 |
26 |
27 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/policies/360-classification-tlp-amber-strict.xml:
--------------------------------------------------------------------------------
1 |
2 | TLP:AMBER+STRICT
3 | Limited disclosure, restricted to participants& organization. Recipients may share TLP:AMBER+STRICT information only with members of their own organization on a need-to-know basis to protect their organization and prevent further harm.
4 | Classification according to Traffic Light Protocol (TLP).
5 |
6 | archetype
7 |
8 |
9 |
10 | included-classification-tlp-amber
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/resources/cmd/UpdateScript.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | #/*
3 | #* Copyright (c) 2010-2017 Evolveum
4 | #*
5 | #* Licensed under the Apache License, Version 2.0 (the "License");
6 | #* you may not use this file except in compliance with the License.
7 | #* You may obtain a copy of the License at
8 | #*
9 | #* http://www.apache.org/licenses/LICENSE-2.0
10 | #*
11 | #* Unless required by applicable law or agreed to in writing, software
12 | #* distributed under the License is distributed on an "AS IS" BASIS,
13 | #* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 | #* See the License for the specific language governing permissions and
15 | #* limitations under the License.
16 | #*/
17 |
18 | ## TODO: connector does not bother with exit values...
19 | ## TODO: connector does not support update for __UID__ , will ignore it. See CmdUpdate.java method.
20 | ####mv "$__UID__" "$__NAME__"
21 | ####echo "$__NAME__"
22 | chmod "$permissions" "$__UID__"
23 | exit 0
24 |
25 |
--------------------------------------------------------------------------------
/samples/rest/query-all-accounts.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 |
20 | resourceRef matches (oid = '62fa0f2e-0f90-4800-ae88-ea06dbbbcbbf') and objectClass = ri:AccountObjectClass
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/initial-postponed/marks/250-neglected.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
11 | Neglected
12 | Mark for object that is not properly cared for, such as role that was not reviewed for a long time.
13 | (ISO27001/A.5.36)
14 |
15 |
16 | fa fa-bomb
17 |
18 |
19 |
20 | archetype
21 |
22 |
23 |
24 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/PBD2020-big-deal.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | PBD2020
11 | Make money fast.
12 | Big Deal
13 | BD2020
14 |
15 | root
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/dashboard/howto/collection-disabled-users.xml:
--------------------------------------------------------------------------------
1 |
10 | All disabled users
11 | UserType
12 |
13 | activation/effectiveStatus = "disabled"
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/dashboard/howto/collection-enabled-users.xml:
--------------------------------------------------------------------------------
1 |
10 | All enabled users
11 | UserType
12 |
13 | activation/effectiveStatus = "enabled"
14 |
15 |
16 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment-tlp/policies/360-classification-tlp-amber.xml:
--------------------------------------------------------------------------------
1 |
2 | TLP:AMBER
3 | Limited disclosure, restricted to participants& organization and its clients. Recipients may share TLP:AMBER information with members of their own organization and its clients on a need-to-know basis to protect their organization and its clients and prevent further harm.
4 | Classification according to Traffic Light Protocol (TLP).
5 |
6 | archetype
7 |
8 |
9 |
10 | included-classification-tlp-green
11 |
12 |
13 |
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12300-it.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12300
11 | Technology primadonnas.
12 | IT Department
13 | 12300
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/demo/midprivacy/objects/service/origin-hr-feed.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
20 | HR feed
21 | Automated feed from the HR system
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F11320-creative.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F11320
11 | We are all mad here.
12 | Creative Section
13 | 11320
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12310-sysadmin.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12310
11 | Magic.
12 | System Administration Section
13 | 12310
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/dashboard/object-collection-resource-all.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
20 | All Resources
21 | ResourceType
22 |
23 |
24 |
--------------------------------------------------------------------------------
/samples/objects/sequence0-99.xml:
--------------------------------------------------------------------------------
1 |
16 |
17 |
18 | Sequence 0-99, rewindable, 10 unused values
19 | 0
20 | 99
21 | true
22 | 10
23 |
24 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12100-legal.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12100
11 | Dangerous suits. Do not feed.
12 | Legal Department
13 | 12100
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/test.bat:
--------------------------------------------------------------------------------
1 | @ECHO OFF
2 | ECHO "Please use Java 11 or newer, this BAT doesn't check the Java version"
3 |
4 | call "./test-setenv.bat"
5 |
6 | if not "%POSTGRES_JDBC_URL%" == "" goto jdbcUrlOk
7 | echo "Please set POSTGRES_JDBC_URL environment variable in test-setenv.bat"
8 | goto end
9 |
10 | :jdbcUrlOk
11 |
12 | if not "%POSTGRES_JDBC_USERNAME%" == "" goto jdbcUsernameOk
13 | echo "Please set POSTGRES_JDBC_USERNAME environment variable in test-setenv.bat"
14 | goto end
15 |
16 | :jdbcUsernameOk
17 |
18 | if not "%POSTGRES_JDBC_USERNAME%" == "" goto jdbcPasswordOk
19 | echo "Please set POSTGRES_JDBC_USERNAME environment variable in test-setenv.bat"
20 | goto end
21 |
22 | :jdbcPasswordOk
23 |
24 | mvnw.cmd -f samples-test clean package ^
25 | -Duser.language=en ^
26 | -Dmidpoint.repository.jdbcUrl=%POSTGRES_JDBC_URL% ^
27 | -Dmidpoint.repository.jdbcUsername=%POSTGRES_JDBC_USERNAME% ^
28 | -Dmidpoint.repository.jdbcPassword=%POSTGRES_JDBC_PASSWORD% ^
29 | -Dtest.config.file=test-config-new-repo.xml
30 |
31 | :end
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/PLS-loudspeaker.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | PLS
11 | Make sure our marketing message gets across.
12 | Loudspeaker
13 | LS
14 |
15 | root
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-hr-import-simulation.xml:
--------------------------------------------------------------------------------
1 |
4 | hr-import (simulation)
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 | preview
17 |
18 | development
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F19100-audit.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F19100
11 | Number-crunching detectives.
12 | Financial Audit Department
13 | 19100
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F19200-security.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F19200
11 | Policies, rules and paranoia.
12 | Security Department
13 | 19200
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F19210-physical-security.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F19210
11 | Locks and guns.
12 | Physical Security Section
13 | 19210
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/dashboard/howto/report-dashboard-howto-example.xml:
--------------------------------------------------------------------------------
1 |
6 | Howto example dashboard report
7 |
8 |
9 |
10 |
11 |
12 |
13 | true
14 | onlyWidget
15 |
16 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-ldap-import-simulation.xml:
--------------------------------------------------------------------------------
1 |
4 | ldap-import (simulation)
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 | preview
17 |
18 | development
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12000-operations.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12000
11 | People that make this company work.
12 | Operations Division
13 | 12000
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/PWL2-wonderland2.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | PWL2
11 | Second generation wonderland. We are all mad here.
12 | Wonderland 2.0
13 | WL2
14 |
15 | root
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/dashboard/object-collection-failed-users-task.xml:
--------------------------------------------------------------------------------
1 |
9 | Failed users during recon task
10 | UserType
11 |
12 | operationExecution/taskRef matches (oid = 'c570786d-e2f9-447d-9023-98ff63dfd88e') and operationExecution/status = 'fatal_error'
13 |
14 |
15 |
--------------------------------------------------------------------------------
/samples/compliance/objects/experiment/roles/experimental-security.xml:
--------------------------------------------------------------------------------
1 |
2 | Experimental security
3 |
4 |
5 | Role understaffing
6 | We require that every information security role is staffed.
7 |
8 |
9 | 2
10 |
11 |
12 |
13 |
14 |
15 |
16 | Record the marks for use in dashboards and reports.
17 |
18 |
19 |
20 |
21 |
22 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12330-architecture.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12330
11 | Whiteboard meets theory.
12 | Enterprise Architecture Section
13 | 12330
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F19000-controlling.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F19000
11 | We are watching you, always watching.
12 | Controlling Division
13 | 19000
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/demo/midprivacy/objects/service/origin-studentsRegistry-feed.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
20 | Students registry feed
21 | Automated feed from the student registry
22 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F11100-direct-sales.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F11100
11 | Suits that talk to customers directly.
12 | Direct Sales Department
13 | 11100
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F11300-marketing.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F11300
11 | Creative bunch that spends money to get more money.
12 | Marketing Department
13 | 11300
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F19220-information-security.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F19220
11 | Heavenly seat of Security Officer.
12 | Information Security Section
13 | 19220
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/contrib/README.md:
--------------------------------------------------------------------------------
1 | # Contributed samples
2 |
3 | This is a directory for contributed samples.
4 | Any contributor is welcome to place a sample here.
5 | The samples are provided by the contributors and they are not reviewed by the maintainers.
6 | Those samples may or may not work, they may be up-to-date or desperately outdated.
7 | There can be anything.
8 | Use with care.
9 |
10 | NOTE:
11 | These samples should still pass the tests, they should be parsable.
12 | Tests may not cover everything (e.g. XSD schemas) and they don't check the semantics.
13 |
14 | ## How to contribute
15 |
16 | Create a directory that is reasonably unique for you.
17 | E.g. use your company name, your nick name or something similar.
18 | Then place samples inside that directory.
19 | If there are several sets of samples (e.g. several user stories) then place each set in a separate sub-directory.
20 | It is recommended to write a short description of the sample in a `README.md` file in each directory.
21 | Run tests from the projects root directory using `test.bat` or `test.sh`.
22 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/roles/authorization-approver.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Authorization: Approver
5 |
6 |
7 | approver
8 |
9 |
10 |
11 |
12 | http://midpoint.evolveum.com/xml/ns/public/security/authorization-model-3#get
13 | http://midpoint.evolveum.com/xml/ns/public/security/authorization-model-3#search
14 | http://midpoint.evolveum.com/xml/ns/public/security/authorization-model-3#read
15 |
18 |
21 |
24 |
25 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F11200-indirect-sales.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F11200
11 | Suits that talk to other suits that talk to customers.
12 | Indirect Sales Department
13 | 11200
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F11310-brand-awareness.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F11310
11 | People that get all mad about missing (TM) in our logo.
12 | Brand Awareness Section
13 | 11310
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12200-backoffice.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12200
11 | Paperwork on top, paperwork on bottom and paperwork in between.
12 | Backoffice Department
13 | 12200
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/resources/cmd/TestScript.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 |
3 | #/*
4 | # * Copyright (c) 2010-2013 Evolveum
5 | # *
6 | # * Licensed under the Apache License, Version 2.0 (the "License");
7 | # * you may not use this file except in compliance with the License.
8 | # * You may obtain a copy of the License at
9 | # *
10 | # * http://www.apache.org/licenses/LICENSE-2.0
11 | # *
12 | # * Unless required by applicable law or agreed to in writing, software
13 | # * distributed under the License is distributed on an "AS IS" BASIS,
14 | # * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15 | # * See the License for the specific language governing permissions and
16 | # * limitations under the License.
17 | # */
18 |
19 | #// Parameters:
20 | #// The connector sends the following:
21 | #// __NAME__ (value of icfs:name)
22 | #// attributeName (value of attribute)
23 | #// ...
24 |
25 | ## TODO: connector does not bother with exit values...
26 | if [ ! -w /tmp/homedirs ]; then
27 | echo "Directory not writable"
28 | exit 1
29 | else exit 0
30 | fi
31 |
32 |
--------------------------------------------------------------------------------
/samples/compliance/objects/sample-book/orgs/F12320-software.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | F12320
11 | Alien life forms that consume a lot of coffee and produce bugs.
12 | Software Development Section
13 | 12320
14 |
15 | superorg
16 |
17 |
18 |
19 | archetype
20 |
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/resources/cmd/SearchScript.sh:
--------------------------------------------------------------------------------
1 | #!/bin/sh
2 | #/*
3 | #* Copyright (c) 2010-2017 Evolveum
4 | #*
5 | #* Licensed under the Apache License, Version 2.0 (the "License");
6 | #* you may not use this file except in compliance with the License.
7 | #* You may obtain a copy of the License at
8 | #*
9 | #* http://www.apache.org/licenses/LICENSE-2.0
10 | #*
11 | #* Unless required by applicable law or agreed to in writing, software
12 | #* distributed under the License is distributed on an "AS IS" BASIS,
13 | #* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 | #* See the License for the specific language governing permissions and
15 | #* limitations under the License.
16 | #*/
17 |
18 | ## TODO: connector does not bother with exit values...
19 | # $__UID__ is icfs:uid; the connector assumes icfs:uid == icfs:name
20 | if [ -r "$__UID__" ]; then
21 | echo "__UID__=$__UID__"
22 | echo "__NAME__=$__UID__"
23 | perm=`stat -c "%a" "$__UID__"`
24 |
25 | echo "permissions=$perm"
26 | exit 0
27 | else
28 | exit 1
29 | fi
30 |
31 |
--------------------------------------------------------------------------------
/samples/resources/msgraph/mandatory-attributes-for-microsoft-azure-ad-group.xml:
--------------------------------------------------------------------------------
1 |
5 |
6 | Mandatory for Microsoft Azure AD group
7 |
8 | -
9 | c:extension/mailNickname
10 |
11 | presentation
12 | 1
13 |
14 |
15 | -
16 | c:extension/mailEnabled
17 |
18 | presentation
19 | 1
20 |
21 |
22 | -
23 | c:extension/securityEnabled
24 |
25 | presentation
26 | 1
27 |
28 |
29 |
30 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-hr-import-shadow-management-simulation.xml:
--------------------------------------------------------------------------------
1 |
4 | hr-import (shadow management simulation)
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 | shadowManagementPreview
17 |
18 | development
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/samples/org/org-top.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
21 | TOP
22 | Top
23 | 0000
24 | functional
25 |
26 |
--------------------------------------------------------------------------------
/samples/simulation/2023-12-07-webinar/changes-phone-and-ou.ldif:
--------------------------------------------------------------------------------
1 | dn: uid=gleming,ou=people,dc=example,dc=com
2 | changetype: modify
3 | add: telephoneNumber
4 | telephoneNumber: +421-817-886-557
5 |
6 | dn: uid=farnett,ou=people,dc=example,dc=com
7 | changetype: modify
8 | add: telephoneNumber
9 | telephoneNumber: +421-554-897-424
10 |
11 | dn: uid=lporath,ou=people,dc=example,dc=com
12 | changetype: modify
13 | add: telephoneNumber
14 | telephoneNumber: +421-495-748-208
15 |
16 | dn: uid=dmeunier,ou=people,dc=example,dc=com
17 | changetype: modify
18 | add: telephoneNumber
19 | telephoneNumber: +421-504-580-648
20 |
21 | dn: uid=gleming,ou=people,dc=example,dc=com
22 | changetype: modify
23 | delete: ou
24 | ou: Finance
25 |
26 | dn: uid=farnett,ou=people,dc=example,dc=com
27 | changetype: modify
28 | delete: ou
29 | ou: Professional Services
30 |
31 | dn: uid=lporath,ou=people,dc=example,dc=com
32 | changetype: modify
33 | delete: ou
34 | ou: Information Technology
35 |
36 | dn: uid=dmeunier,ou=people,dc=example,dc=com
37 | changetype: modify
38 | delete: ou
39 | ou: Human Resources
40 |
41 |
--------------------------------------------------------------------------------
/samples/simulation/tutorial/task-ldap-import-shadow-management-simulation.xml:
--------------------------------------------------------------------------------
1 |
4 | ldap-import (shadow management simulation)
5 | runnable
6 |
7 |
8 |
9 |
10 |
11 | ri:AccountObjectClass
12 |
13 |
14 |
15 |
16 | shadowManagementPreview
17 |
18 | development
19 |
20 |
21 |
22 |
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/samples/tasks/task-jdbc-ping-default.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 | JDBC Ping
20 |
21 | runnable
22 | http://midpoint.evolveum.com/xml/ns/public/task/jdbc-ping/handler-3
23 |
24 |
--------------------------------------------------------------------------------
/samples/requestAccess/2024-02-22-webinar/archetypes/archetype-user-pirate.xml:
--------------------------------------------------------------------------------
1 |
3 |
4 | Archetype: Pirate
5 |
6 |
7 | holderType
8 |
9 | UserType
10 |
11 |
12 |
13 |
14 |
15 |
16 |
17 |
18 |
19 |
20 |
21 |
22 |
23 |
24 | Pirates
25 |
26 | fa-solid fa-skull-crossbones
27 | blue
28 |
29 |
30 |
31 |
--------------------------------------------------------------------------------
/samples/compliance/objects/initial-postponed/marks/250-understaffed-security.xml:
--------------------------------------------------------------------------------
1 |
2 |
8 |
9 |
11 | Understaffed security
12 | Mark for security role or responsibility which is not properly staffed, it is not assigned to the users according to policy.
13 | (ISO27001/A.5.1,ISO27001/A.5.2,ISO27001/A.5.36)
14 |
15 |
16 | fa fa-person-arrow-down-to-line
17 |
18 |
19 |
20 | archetype
21 |
22 |
23 |
24 |
--------------------------------------------------------------------------------
/samples/introductionToFlexibleAuthentication.2024-05-16-webinar/objects/04-super-archetype.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 | Super archetype SP
20 | structural
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/tasks/task-reindex.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 | Reindex repository objects
20 |
21 | runnable
22 |
23 |
24 |
25 |
26 |
27 |
28 |
--------------------------------------------------------------------------------
/samples/contrib/bshp/objects/lookupTables/Risk Levels.xml:
--------------------------------------------------------------------------------
1 |
12 | Risk Levels
13 |
14 | HIGH
15 |
16 |
17 |
18 | LOW
19 |
20 |
21 |
22 | MODERATE
23 |
24 |
25 |
26 |
--------------------------------------------------------------------------------
/samples/group-synchronization/2024-11-07-webinar/objects/910-1test-all-resources.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 | c:ResourceType
19 |
20 | test-resource
21 |
22 |
23 |
--------------------------------------------------------------------------------
/samples/objects/user-jack.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
19 |
20 |
22 | jack
23 | Cpt. Jack Sparrow
24 | Jack
25 | Sparrow
26 | Cpt.
27 |
28 |
--------------------------------------------------------------------------------
/samples/resources/openldap/repltest/openldap-base.ldif:
--------------------------------------------------------------------------------
1 | dn: dc=repltest,dc=evolveum,dc=com
2 | objectClass: domain
3 | dc: repltest
4 |
5 | dn: ou=people,dc=repltest,dc=evolveum,dc=com
6 | objectClass: organizationalunit
7 | ou: people
8 |
9 | dn: ou=groups,dc=repltest,dc=evolveum,dc=com
10 | objectClass: organizationalunit
11 | ou: groups
12 |
13 | dn: ou=Administrators,dc=repltest,dc=evolveum,dc=com
14 | objectclass: top
15 | objectclass: organizationalunit
16 | ou: Administrators
17 |
18 | dn: cn=idm,ou=Administrators,dc=repltest,dc=evolveum,dc=com
19 | objectclass: top
20 | objectclass: person
21 | cn: idm
22 | sn: IDM Administrator
23 | description: Special LDAP acccount used by the IDM
24 | to access the LDAP data.
25 | # password: secret
26 | userPassword: {SSHA}R5KF3K4X2FX5gkWKuDxm4M6gZyO0QgNF
27 |
28 | dn: cn=replication manager,ou=Administrators,dc=repltest,dc=evolveum,dc=com
29 | objectclass: top
30 | objectclass: simpleSecurityObject
31 | objectclass: organizationalRole
32 | cn: replication manager
33 | description: Replication Manager
34 | # password: rsecret
35 | userPassword: {SSHA}iQhyb3i0v3mMdBBQQxgfpbPXSV2Gkksi
36 |
--------------------------------------------------------------------------------
/samples/stories/unix-ldap/aci.ldif:
--------------------------------------------------------------------------------
1 | # sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f ~/Work/Documents/Evolveum/evolveum/samples/customer-openldap-da/aci.ldif
2 | # !!!!!!!!!!!!!!!!!!!!!!!
3 | # BE ADVISED THE {2}mdb DEPENDS ON YOUR OpenLDAP INSTALLATION/SETUP
4 | # !!!!!!!!!!!!!!!!!!!!!!!
5 | dn: olcDatabase={2}mdb,cn=config
6 | changetype: modify
7 | replace: olcAccess
8 | olcAccess: to attrs=userPassword,shadowLastChange by dn="cn=idm,ou=Administrators,dc=example,dc=com" write by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write by anonymous auth by self write by * none
9 | olcAccess: to dn.base="" by * read
10 | olcAccess: to dn.subtree="ou=people,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
11 | olcAccess: to dn.subtree="ou=groups,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
12 | olcAccess: to dn.subtree="ou=unixgroups,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
13 | olcAccess: to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write by dn="cn=idm,ou=Administrators,dc=example,dc=com" read by self read by * none
14 |
--------------------------------------------------------------------------------
/samples/compliance/objects/initial-postponed/archetypes/064-role-policy.xml:
--------------------------------------------------------------------------------
1 |
7 |
10 | Role policy
11 | Archetype for policies that apply to roles.
12 |
13 |
14 |
15 | Role policies
16 | Role policy
17 |
18 |
19 | auxiliary
20 |
21 | holderType
22 |
23 | PolicyType
24 |
25 |
26 |
27 |
--------------------------------------------------------------------------------
/samples/demo/midprivacy/objects/archetypes/archetypeCommonUser.xml:
--------------------------------------------------------------------------------
1 |
2 |
17 |
18 |
20 | archetype-common-user
21 |
22 |
23 |
24 |
25 |
--------------------------------------------------------------------------------
/samples/stories/multitenant-idm-saas/aci.ldif:
--------------------------------------------------------------------------------
1 | # sudo ldapmodify -Y EXTERNAL -H ldapi:/// -f ~/Work/Documents/Evolveum/evolveum/samples/customer-openldap-da/aci.ldif
2 | # !!!!!!!!!!!!!!!!!!!!!!!
3 | # BE ADVISED THE {2}mdb DEPENDS ON YOUR OpenLDAP INSTALLATION/SETUP
4 | # !!!!!!!!!!!!!!!!!!!!!!!
5 | dn: olcDatabase={2}mdb,cn=config
6 | changetype: modify
7 | replace: olcAccess
8 | olcAccess: to attrs=userPassword,shadowLastChange by dn="cn=idm,ou=Administrators,dc=example,dc=com" write by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write by anonymous auth by self write by * none
9 | olcAccess: to dn.base="" by * read
10 | olcAccess: to dn.subtree="ou=people,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
11 | olcAccess: to dn.subtree="ou=groups,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
12 | olcAccess: to dn.subtree="ou=customers,dc=example,dc=com" by dn="cn=idm,ou=Administrators,dc=example,dc=com" write
13 | olcAccess: to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth write by dn="cn=idm,ou=Administrators,dc=example,dc=com" read by self read by * none
14 |
--------------------------------------------------------------------------------
/samples/evolveum/hr.csv:
--------------------------------------------------------------------------------
1 | "empno","fullname","firstname","lastname","orgId","job","active"
2 | "001","Mgr. Igor Farinič","Igor","Farinič","F1200","CEO","true"
3 | "002","Ing. Radovan Semančík, PhD","Radovan","Semančík","F1100","Software Architect","true"
4 | "003","Ing. Katarína Valaliková","Katarína","Valaliková","F1110","Software Developer","true"
5 | "004","Mgr. Pavol Mederly, PhD","Pavol","Mederly","F1110","Software Developer","true"
6 | "005","Ing. Viliam Repáň","Viliam","Repáň","F1110","Software Developer","true"
7 | "006","Kate Honchar","Kate","Honchar","F1110","Software Developer","true"
8 | "007","Ing. Ivan Noris","Ivan","Noris","F1130","IDM Engineer","true"
9 | "008","Mgr. Gustáv Pálos","Gustáv","Pálos","F1130","IDM Engineer","true"
10 | "009","Andrea Žibritovská","Andrea","Žibritovská","F1220","Accountant","true"
11 | "010","Ing. Veronika Kolpaščiková","Veronika","Kolpaščiková","F1210","Marketing Specialist","true"
12 | "011","Mgr. Katarína Stanovská","Katarína","Stanovská","F1200","Assistant","true"
13 | "012","Ing. Martina Benčková","Martina","Benčková","F1200","Project Manager","true"
14 | "013","Matúš Macík","Matúš","Macík","F1130","IDM Engineer","true"
15 |
--------------------------------------------------------------------------------