Creating Users with Custom Roles
Earlier, you could only create users with admin roles or user roles.
With the new implementation, you can now assign any valid roles for a user by using Create and Modify User API (http://<host_address>:<port_address>/v1/user) to create users.
You must map the same roles in the
Application Security Configurations section in
$OM_HOME/seed-data/app-properties/ConfigValues_CatalogService.json and
$OM_HOM/seed-data/app-properties/ConfigValues_OrchService.json
,
$OM_HOM/seed-data/app-properties/ConfigValues_ArchivalService.json
, and
$OM_HOM/seed-data/app-properties/ConfigValues_DataService.json
files.
Map the same role in the Application Security section in the
$OM_HOME/seed-data/app-properties/ConfigValues_OMSUI.json
file.
Also, you must create a user for inter service communication and provide the details in the 'User Details For Inter Service Communication' section in respective json properties.
The
configuratorAccessRoles
property is added for the configurator access role in the
$OM_HOME/roles/configurator/standalone/config/application.properties file. This value can be used as a comma-separated value with any valid roles.
All the Orchestrator APIs that are exposed over Swagger are now role-based.
In the
$OM_HOME/seed-data/app-properties/ConfigValues_OMSUI.json
file, set the
admin_role
and
user_role
properties. The admin role has the read and write access. The user role has only the read access.