Name | Type | Multiplicity | Description |
---|---|---|---|
kind |
property ShadowKindType |
[0,1] | |
intent |
property string |
[0,1] | |
displayName |
property string |
[0,1] | Human readable name. |
description |
property string |
[0,1] | Free-form textual description of the object. |
default |
property boolean |
[0,1] | Specifies whether this type is the default type for the resource. |
objectClass |
property QName |
[1,1] | XSD type from the resource schema (Object Class) that should be used for accounts on this resource. |
auxiliaryObjectClass |
property QName |
[0,-1] | The reference to additional type definitions for this object. |
auxiliaryObjectClassMappings |
container ResourceBidirectionalMappingAndDefinitionType |
[0,1] | Outbound/inbound mappings for auxiliary object classes. |
multiplicity |
container ResourceObjectMultiplicityType |
[0,1] | TODO |
baseContext |
container ResourceObjectReferenceType |
[0,1] | The definition of base context (resource object container). |
searchHierarchyScope |
property SearchHierarchyScopeType |
[0,1] | Definition of search hierarchy scope. |
attribute |
container ResourceAttributeDefinitionType |
[0,-1] | Specification of handling of an account attribute. |
dependency |
container ResourceObjectTypeDependencyType |
[0,-1] | |
association |
container ResourceObjectAssociationType |
[0,-1] | Describes how entitlement is associated to the subject (e. |
volatility |
property ResourceObjectVolatilityType |
[0,1] | Specifies volatility of this type of resource objects, i. |
iteration |
property IterationSpecificationType |
[0,1] | |
protected |
property ResourceObjectPatternType |
[0,-1] | Specification of a protected account: account that cannot be affected by IDM. |
activation |
container ResourceActivationDefinitionType |
[0,1] | Definition of activation handling for this account type. |
credentials |
property ResourceCredentialsDefinitionType |
[0,1] | Definition of credentials handling for this account type. |
securityPolicyRef |
reference ObjectReferenceType |
[0,1] | Reference to the object type security policy settings. |
lifecycle |
container ResourceObjectLifecycleDefinitionType |
[0,1] | Definition of resource object lifecycle handling. |
configuredCapabilities |
container CapabilityCollectionType |
[0,1] | The configured capabilities of the resource specific to this object type. |
projection |
container ProjectionPolicyType |
[0,1] | Object type related account synchronization settings. |
Flags: RAM,runtime,AVals:4
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]
Human readable name. This name may be displayed in tools and GUIs
to provide more pleasant user experience, as the XML data type names
or object names may look quite frightening.
The "displayName" should contain a value that is readable for almost any
user. It is never used in the "logic", it is used only for display purposes.
The use of national characters is in "displayName" is fully supported.
DisplayName is reused in several location, but the meaning is still the same.
Flags: RAM,runtime
Multiplicity: [0,1]
Free-form textual description of the object. It is supposed to describe
the object or a construct that it is attached to.
Anything that the system administrator wants may be here. The system
will not interpret the information except for displaying it and allow
user to edit it.
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [1,1]
Flags: RAM,runtime
Multiplicity: [0,-1]
Flags: RAM,runtime
Multiplicity: [0,1]
Outbound/inbound mappings for auxiliary object classes. These can be used to manipulate
auxiliary object classes beyond the simple capabilities provided by the auxiliaryObjectClass
property.
NOTE: outbound mapping for auxiliary object classes is not yet supported.
If tolerant flag is set to true then midPoint will tolerate existing auxiliary object classes on resource
objects. MidPoint will add/remove auxiliary object classes only if there is an explicit
operation for that (e.g. assign/unassign of role with auxiliary object class definition).
If tolerant flag set to false then midPoint will strictly synchronize auxiliary object classes of resource
objects with the definition given in midPoint configuration. This is the default behavior.
NOTE: the "tolerant" behavior is disabled by default for auxiliary object classes. This is
different for most other midPoint definitions where tolerant behavior is enabled by default.
This inconsistency has historic (compatibility) reasons. But having auxiliary object classes
non-tolerant also makes a lot of sense in usual situations.
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime,AVals:2
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,-1]
Flags: RAM,runtime
Multiplicity: [0,-1]
Flags: RAM,runtime
Multiplicity: [0,-1]
Flags: RAM,runtime,AVals:3
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,-1]
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: RAM
Multiplicity: [0,1]
Reference to the object type security policy settings.
Flags: RAM,runtime
Multiplicity: [0,1]
Flags: dyn,RAM,runtime
Multiplicity: [0,1]
Flags: RAM,runtime
Multiplicity: [0,1]