SecurityPolicyType (Complex Type)

Namespace: http://midpoint.evolveum.com/xml/ns/public/common/common-3

Supertype: AssignmentHolderType
Object that contains definitions of overall security policy. It contains configuration of authentication mechanisms, credentials management (such as password resets) and so on. Please note that this NOT contain authorization and auditing. Authorization is defined in roles (see RoleType) and auditing has a separate configuration.
Item Summary  
Name Type Multiplicity Description
name property
PolyStringType
[0,1] Human-readable, mutable name of the object. 
description property
string
[0,1] Free-form textual description of the object. 
documentation property
string
[0,1] AsciiDoc-formatted technical documentation of the object. 
subtype property
string
[0,-1] Type of the object. 
fetchResult property
OperationResultType
[0,1] Result of the operation that fetched this instance of the object. 
extension container
ExtensionType
[0,1] Extension container that provides generic extensibility mechanism. 
parentOrgRef reference
ObjectReferenceType
[0,-1] Set of the orgs (organizational units, projects, teams) that the object relates to. 
trigger container
TriggerType
[0,-1] Triggers for this object. 
metadata container
MetadataType
[0,1] Meta-data about object creation, modification, etc. 
tenantRef reference
ObjectReferenceType
[0,1] Reference to the tenant to which this object belongs. 
lifecycleState property
string
[0,1] Lifecycle state of the object. 
operationExecution container
OperationExecutionType
[0,-1] Description of recent operations executed on this object (or related objects in special cases). 
lensContext container
LensContextType
[0,1] Model context describing executed operation  
policySituation property
anyURI
[0,-1] The policy situation(s) of this object. 
triggeredPolicyRule property
EvaluatedPolicyRuleType
[0,-1] Triggered policy rules for this object. 
policyException container
PolicyExceptionType
[0,-1] Recorded exception from a policy rule. 
diagnosticInformation property
DiagnosticInformationType
[0,-1] Diagnostic information attached to this object. 
indestructible property
boolean
[0,1] Protection against accidental deletion. 
effectiveMarkRef reference
ObjectReferenceType
[0,-1] Object marks assigned to the shadow. 
policyStatement container
PolicyStatementType
[0,-1] Policy statements to manually add or exclude effective marks of shadow. 
effectiveOperationPolicy container
ObjectOperationPolicyType
[0,1] Effective provisioning policy derived from Shadow marks and resource configuration. 
assignment container
AssignmentType
[0,-1] Set of object's assignments. 
iteration property
int
[0,1] Iteration number. 
iterationToken property
string
[0,1] Iteration token. 
archetypeRef reference
ObjectReferenceType
[0,-1] References to all applicable archetypes, including "indirect" archetypes such as archetype supertypes. 
roleMembershipRef reference
ObjectReferenceType
[0,-1] References to abstract roles (roles, orgs, services) that this focus currently belongs to - directly or indirectly. 
delegatedRef reference
ObjectReferenceType
[0,-1] References to objects (abstract roles as well as users) obtained via delegation. 
roleInfluenceRef reference
ObjectReferenceType
[0,-1] References to abstract roles (roles and orgs) that this focus may directly belong to. 
authentication container
AuthenticationsPolicyType
[0,1] Definition of the use of authentication mechanisms. 
credentials container
CredentialsPolicyType
[0,1] Credentials management policy. 
flow container
RegistrationsPolicyType
[0,1] TODO  
credentialsReset container
CredentialsResetPolicyType
[0,1] Credentials reset management policy. 
identityRecovery container
IdentityRecoveryPolicyType
[0,1] Identity recovery management policy.