Creating Users with Custom Roles

Earlier, you could only create users with admin roles or user roles.

With the new implementation, you can now assign any valid roles for a user by using Create and Modify User API (http://<host_address>:<port_address>/v1/user) to create users.

You must map the same roles in the Application Security Configurations section in $OM_HOME/seed-data/app-properties/ConfigValues_CatalogService.json and $OM_HOM/seed-data/app-properties/ConfigValues_OrchService.json, $OM_HOM/seed-data/app-properties/ConfigValues_ArchivalService.json, and $OM_HOM/seed-data/app-properties/ConfigValues_DataService.json files.

Map the same role in the Application Security section in the $OM_HOME/seed-data/app-properties/ConfigValues_OMSUI.json file.

Also, you must create a user for inter service communication and provide the details in the 'User Details For Inter Service Communication' section in respective json properties.

The configuratorAccessRoles property is added for the configurator access role in the $OM_HOME/roles/configurator/standalone/config/application.properties file. This value can be used as a comma-separated value with any valid roles.

All the Orchestrator APIs that are exposed over Swagger are now role-based.

In the $OM_HOME/seed-data/app-properties/ConfigValues_OMSUI.json file, set the admin_role and user_role properties. The admin role has the read and write access. The user role has only the read access.

Note: Currently, you can configure a single role for OMSUI. For all other services, you can enter comma-separated roles.