Package com.evolveum.midpoint.xml.ns._public.common.common_3
package com.evolveum.midpoint.xml.ns._public.common.common_3
-
ClassDescriptionDefinition of an access certification - a template for a set of access certification campaigns.Common parts of definitions of activity-related reports.Supertype for all activity state types.Object clustering options.Common supertype for all authentication module definitions.Abstract clockwork-based synchronization action.Abstract supertype for constructions.Current state of a correlator being used.Definition of a correlator.Common definition for all authentication modules that use password.Supertype of report export types.Abstract supertype for all form items.Abstract type for key from key store.Configuration of the logger: the facility that collects log messages from the code.Defines how a value of a property (or attribute) should be constructed.Common supertype for item normalization steps (for custom indexing).Abstract supertype for all data types that specify configuration properties for a specific object type (User, Role, Org, Resource, ...)Common definition for all authentication modules that use password.Basic data structure for all policy constraints.Basic super type for predefined configuration of account activation.TODOAbstract type for configuration of reports.Definition for report-related activities.Abstract class that contains the "essence" of a role.Abstract supertype for various expression and related profiles.Common definition for all authentication modules that use security questions.Abstract type for key from string representation.Information about mapping or expression source during evaluation.Abstract synchronization action - either clockwork-based or arbitrary one.Abstract supertype for description of bucket contents.Marker type for an activity work definition.TODO EXPERIMENTALTODOCommon superclass for workflow (approval) work item, certification work item and case management work item.Describes how to segment the work into buckets and manage them.Scope for assignment-related reviews.An enumeration that defines possible states of a certification campaign.Definition of an access certification campaign.An enumeration that defines possible strategies for case outcome (approval) computation - currently both at the stage and campaign level.Statistics give a set of access certification cases.An item that has to be certified, viewed in the scope of a given certification campaign.Configuration for access certification.Access certification definition augmented with report-related information (e.g.Access certification definition.The most common way of specifying scope - providing type+search filter to select "base" objects and then some means of deriving certification cases from them.TODOTODOAn enumeration that defines possible styles for certification case remediation.An enumeration that defines possible reviewers' responses.Specifies how to select reviewers for a campaign stage.Specifies the scope of an access certification campaign.Definition of an access certification campaign stage.Information about a stage of a campaign.A work item for a certification case.A configuration request access UITODOTODOAn enumeration that indicates the activation status of a particular entity.Type that defines activation properties.Tailors the work specification by adding activity or activities before or after existing ones, or by changing specification (execution mode, flow of control, distribution) of existing activities.Shows what actions were executed.Objects affected by a simple activity.TODOWork definition for the auto-scaling activity.Work state for the auto scaling activity.TODOTODOInformation about the bucket processing within an activity.Information about bucket management operations performance within an activity.TODOTODODefines the features related to the flow of control within an activity (simple or composite).Counters related to the execution of the activity, grouped into related categories.A group of related counters.A single counter.Describes an activity, i.e.TODODescribes how we are going to distribute the work that is to be done: how to divide it into work buckets, and how to distribute these buckets to worker tasks.Specifies a reaction when a given error during activity execution occurs.Specifies a strategy for handling errors during iterative activities.Option about logging a particular task-related event.Detailed definition of the execution mode.How should the activity deal with item counting, i.e.When are expected items in a bucket counted in an activity?Information about item processing in given activity.Controls logging aspects of an activity execution.When are expected items (overall) counted in an activity? Just like ActivityItemCountingOptionType but currently does not support distinguishing based on bucketed/non-bucketed.Path from the root of the activity tree to the specified activity.Output of activity precondition expression.Progress of an activity.Realization state of an activity.Should be an activity re-executed when the task is restarted (e.g.A collection of related report data objects.How should the task report its various aspects?Defines specific activity-related reports.Reports related to activity execution.Information about individual activity run.Realization state of an activity - simplified for the sake of activity overview.Should the simulation result be created for the activity? If so, how?State related to the "simulated" execution of this activity (and its children).Parameters related to the maintenance of activity tree state overview.Is progress information present?How is the progress updated?Describes an overview of the state of an activity.How much is the activity state (full / overview) persistent across individual realizations?Describes the state of an activity.Statistical information for individual activities.How the part is realized via subtask.Information about synchronization situations of objects processed by synchronization-related tasks: live sync, import, reconciliation.TODOExecution state of an activity task - to be used in activity overview.State of the local activity run in an individual task.Definition for tracing execution of an iterative activity.Realization state of an activity tree.Describes the state of an activity tree.Creates an owning focus for the resource object.Authorizations to be applied in addition to or instead of the ones of current/selected subject.Configuration related to approvals GUI.Default display formats for various UI elements.Role management features that are potentially user-specific i.e.Administration GUI configuration.The enum describes the administrative availability of the resource, if it is operational or undergoing maintenance.Structure containing metadata about administrative operational state of the resource.Contains free form logging configuration.Condition controlling item report collection that is evaluated after the item is processed.This policy constraint always applies.Representation of AMQP 0-9-1 message attributes.Representation AMQP 0-9-1 message.AMQP client configurationThe container consists of statistical data about role analysis cluster.Async update carrying any data.Any value (property, reference, container).Configuration of the logger: the facility that collects log messages from the code.Specification of policies that are applicable to this object type.Prescribes how individual approval requirements should be composed into overall approval schema.Describes the approval context, i.e.Result (outcome) of an approval process stage.Approval action.Trace for operation(s) that create approval process start instruction(s).Information on actual or expected execution of an approval schema.Rules for approving something (e.g.One "level" (or stage) in the approval process.Information of an actual or expected execution of an approval stage.Preview of an execution of an approval stage.Record of an actual execution of an approval stage.Definition of GUI-related configuration for the archetyped objects.Definition of archetype policies, such as object template, lifecycle, type display properties and so on.Module is used for the refining user search based on archetype selection.Defines a set of archetypes.Archetype definition.Type of the archetype determining how it can be assigned and used.Specifies category or "area" of a particular concept.ActiveMQ Artemis target.Copy value as is, without any modification.Specifies constraints on assignments that are placed in the same focus.Trace for assignment evaluation operation.Abstract supertype for all object types that can have assignments.Constraint that triggers the rule when the object is assigned.Assignment path leading to this data.One segment in the metadata assignment path.One segment in the assignment path.Sequence of assignment paths, e.g.TODOOverall assignmentRelation approach for archetypes objects.Specifies what types of assignments can be made to the focal object when it is a target of an assignment.Trace for assignment evaluation operation.Selects some assignments from all the assignments in the object.Create an expression that provides an assignment based on search results.Generic assignments of one object to another object.Container for association-to-be-added in the context: resource shadow discriminator.Definition of an expression that creates association from links (linkRefs)Mode of asynchronous script execution.Options for asynchronous script execution.JAXB version of OperationRequested.Add class.JAXB version of OperationRequested.Delete class.JAXB version of OperationRequested.Modify class.JAXB version of OperationRequested class.Connection to asynchronous provisioning targets.Connection to asynchronous provisioning target.How to handle errors during async update processing.Information on async update listening activity.Status of the asynchronous update listening activity.Representation of an async update message.Sources of asynchronous updates.Source of asynchronous updates.Executes the asynchronous update from a resource.The way how an attribute is fetched from the resource.The way how an attribute is stored in repo - in case of passive caching.The module can be used as an additional verification of the already authenticated user.Behavioral data about past authentications.Definition of authentication modules that midPoint is aware about.Channel specification for authentication sequence.Necessity, i.e.Specification of authentication module in the sequence.Authentication sequence.Definition of the use of authentication mechanisms.Limitations of this authorization when it is applied to other authorizations.A request to evaluate authorization-based access decision.A request to evaluate authorization-based filter processing.Request to evaluate authorizations for diagnostics purposes.Response of diagnostic evaluation of authorizations.How the evaluation should be traced.Limitations of this authorization when it is applied to other authorizations.Authorization define fine-grained access to midPoint objects and system functionality.Specification of role auto-assignment properties.Reason for automated decision.Defines how auto-scaling should be carried out.The enum describes the availability of the resource, if it is down, unreachable or ok.Available (saved or preconfigured) filter which can be applied during the search.How should be the base context in the delineation used for the classification?Common base type for handler and notifiers - filtering and common information.Specifies the basic features of a repository-based object set.Specifies a set of resource objects to be processed with only basic identifiers.An enumeration that defines when the activity will be executed.Condition controlling item report creation that is evaluated before the item is processed.General-purpose behavioral data.Specification of how string-based segments are delineated.Information about specific kind of work bucket management operation performance.Information about bucket completion or analysis to be recorded in buckets report.Information on buckets processing (for activity state overview).Defines how buckets should be created.Defines report on buckets processing.Role in the work buckets processing.Defines the sampling of buckets.TODOBuilt-in simulation metric.Specifies restrictions and permissions for a specific bulk action.A profile concerning the use of bulk actions.How to deal with remote cache invalidation uncertainty.How is the cache invalidated? Currently applicable only to global repo cache objects.Settings for a given cache and object type(s).Settings for a given cache.Information about performance of various caches present in midPoint.Report on the state of midPoint caches.Level of details when reporting cache performance statistics.How are cache statistics collected.Level of details when reporting cache performance statistics.How cache statistics are collected and reported.How was the cache used?Profiles for various kind of caching.Metadata that record when a cache copy was retrieved, the identifiers (etags) of that copy and possibly also other data.Definition of object attribute caching policies.Specific caching profile that can be used system-wide or for individual threads.Definition of overall caching strategy.Collection of resource capabilities.Event describing the completion of a workflow process instance.Information related to correlation request that is to be resolved.Event describing the creation of a workflow process instance.Any event occurring during case lifetime that needs to be recorded, e.g.TODOA work item for a (generic) case.TODOBatch of changes to be executed.Definition of valid characters in class.Expression used to check the data and report a user-friendly message in case that the check fails.Configuration of comment text field in last step (checkout) of request access UI wizard.Configuration structure related to request access UI wizard and its last step - checkout.Configuration of validity (assignment validity) for requested roles in last step (checkout) of request access UI wizard.Definition for a classic report export activity.Definition for a classic report import activity.Configuration of the logger: the facility that collects log messages from the code.Information how to override logging level for specified logger(s).Configuration of cleanup intervals and policies for various midPoint subsystems.Configuration of cleanup intervals and policies for a specific subsystem or feature.Definition for a cleanup activity.Trace for Clockwork.click operation.Trace for Clockwork.run operation.Abstract trace for clockwork events.State of the cluster for the purposes of auto-scaling.Specification of an explicit or implicit object collection (including reference to the collection).Depth parameter for collection interpretations that allow distinction between direct and indirect relation.Method how implicit or explicit object collection should be interpreted.Specification of an explicit or implicit object collection, without reference to the collection.Constraints for collection stats (statistics).Stats (statistics) setting and entries.TODOSpecifies a command to be executed on an operating system command-line.TODO EXPERIMENTALReport on structured object size.Definition of scaling for the composite correlator.User-friendly way of defining a correlator or correlators.Composition-enabled composite correlator.A filter with an expression that denotes a necessary condition for the filter to be applied.Defines properties of a specific dashboard widget.What parts of a system configuration (in the most broad sense of the word), or what changes thereof should be (or are) used for the particular execution? Most of the time, we are concerned with simulated executions, but in the future it is possible to tweak configuration in a way that will be safe to run in production.TODOWhat to do in the case of modify-modify conflict during model (clockwork) operation.How to resolve write-write conflicts on focal objects, i.e.Resource configuration (hostname, port, ...).Host definition for remote connector, remote connector framework or a remote "gateway".Complete specification of a connector instance with configuration and capabilities.Description of a generic connector.Information about a ConnId operation.Defines report on ConnId operations.How constraints checking (for focus and projections) should be done.Strength of the construction defines how aggressively will the construction be applied.Projection construction.Definition for the panel which will be used on details panel.Module is used for the user authentication using the correlation rules.Legacy definition of whether to create correlation cases.Defines the custom confidence value for given correlator.These values are used to determine the correlation results.Definition of a correlation (e.g.Item that should be correlated as part of this correlator (i.e., correlation rule).Configuration for correlation module.Defines some restrictions for the correlation authentication module.TODODescribes situations in which the correlator should be activated.Definition of how the results of the correlator should be integrated in the parent (composite) one.Creates (or updates) a correlation case for resource object in "disputed" synchronization state, i.e.Structure that specifies common elements to all the credential policies.Source of a new credential value.Credentials management policy.Constraints that define how propagation of credentials can be controlled by the user.Specifies the method of resetting the credential.Credentials reset management policy.Specifies the method of storing the credential in midPoint.This is a container type for various credentials types: passwords, public keys, one-time password scheme identifiers, etc.Specifies criticality of an operation.CSV export type for Report.Custom message source provided by a Java class.Work state for a custom composite activity.Normalization carried out using custom expression.Custom notifier which uses expression to produce the message object.Custom ways of evaluating a policy constraint.Custom type transport that can be realized either as a Java class (e.g.Specifies layout of a dashboard, such as the user dashboard (home screen) or administration dashboard.Configuration of dashboard-based reports.Configuration Dasboard dashboard showing in GUI.Properties of a specific widget data field.Type of the field.Specifies widget data source.Specifies widget presentation properties.Type of widget content data source.Defines properties of a specific dashboard widget.Conditional variation in the way how the widget is displayed.Container which specify legal content for the role related to the GDPR.Way of rounding deadline(s) e.g.Cleanup policy for dead nodes.Whether to use default approval policy rules.Default expression profiles to be used in specific situations.Default phase or phases for evaluation of inbound mappings.How should be definitions processed when object is to be retrieved.If an account is unassigned and there is no other existing assignment for an account midPoint will de-provisioning that account.TODO EXPERIMENTALState for a delegation (delegating) activity run.Deletes the owning focus for the resource object.Deletes the resource object.Deletes specified objects.TODO EXPERIMENTALInformation about midPoint deployment: subscription information, deployment name, description, color and so on.Specifies the method how page save/preview buttons are shown and processed.A diagnostic information attached to an object.Specific elements for export/import.Direction of report.Specifies the kind of view of value.Specifies whether "distinct" option should be used in database searches.Definition for a distributed report export activity.TODOModule is used for 2FA authentication.Type that contains nothing.Enforcement action.Statistics related to performance and state of external environment, namely provisioning via connectors, mappings (as these might contain code that invokes external systems), and notifications.Categorizes errors.What should a task do when an error of given type is encountered? Only some combinations of values are allowed: ignore (+ stopAfter), retryLater (+ stopAfter), stop.Selects error categories, e.g.Description of an error condition to act on.TODO EXPERIMENTALTODOAn event handler type - extends common handler with filter/info and additionally can contain one or more notifiers of various kinds.Domain of a given event mark.Information specific for event marks.TODOTODOContainer that defines exclusion of entities (e.g.TODOPrivileges and identity that will be used to execute an expression or similar operation.Executes given changes.Segmentation strategy that explicitly enumerates the buckets.A correlator that uses a specified expression to find shadow owner.Trace for expression evaluation operation.Specifies restrictions for execution of specific expression evaluators.Wrapper for expression evaluator.Describes input parameters to the expression.Specifies restrictions and permissions for a specific class.Specifies restrictions and permissions for a specific method.Specifies restrictions and permissions for a package.Specifies restrictions and permissions for various evaluators, especially for scripting expressions.Specifies restrictions for execution of expressions and scripts.Expression result multiplicity.Information about mapping source during evaluation.Composition-enabled expression correlator.TODODefinition of a variable.Place for non-standard object properties.How are failed objects selected.Selects objects that were failed to be processed in previous activity run(s).The enum describes the operation during the account was processed.How should be errors during object fetch process handled and reported.How should be errors during object fetch process reported.Where and how to store "file" notifications.Export configuration.Report export type.Where and how to store "file" messages.A correlator that uses a specified filter to find shadow owner.Composition-enabled filter correlator.Work bucket content defined explicitly by a filter.Specification of role auto-assignment properties.Option for updating focus authentication behaviour attributes.TODOAlternative identities for a focus.Source of a focus identity.Alternative identity for a focus.Information about focus being loaded.A single (alternative) identity.Abstract supertype for all object types that can be focus of full midPoint computation.Executes validity scan on focal objects.Setting that influence how authorizations are used to display and evaluate the form.This part defines the actual form presentation and layout.A group of fields.A single form field.javascript stuff, we replace ${this} with proper input id, probably some jQuery black magic TODO: add event type attribute to client element for this validatorServer-side validation rules.Validation rules for the item.Specifies a form using several different methods, e.g.Form definition.Information about full shadow being loaded.Configuration of the full text search feature.What items to index.Evaluates custom defined functions from Function LibraryWhat function libraries and their functions can be called?What functions in a given function library can be called?Define reusable functionsSpecifies the fuzzy search algorithm to use for searching.Configuration for GeneralChangeProcessor.A scenario for GeneralChangeProcessor.General notifier that can handle any type of event.Configuration that is common to all transport configurations.Value generator mode.Generate value according to a policy that is associated with the property/attribute.Generic object for storing unknown (unexpected) object types.A generic configuration for a wf aspect.Generic visualization type (off, one-liner, detailed).See GetOperationOptions for a description.Policy rule for use in global configuration.How should be "groups" (orgs, roles) expanded?Group selection structure creates new tile in first step of request access wizard UI (person of interest).Actions are special things that can be done with particular object or list of objects.Specifies the settings for GUI object export.Flexible configurable label.Base data Provider configurationConfiguration of the object list column.Specifies form that are used for displaying and editing of specific object typeSpecifies the set of default panels that are used for displaying and editing of objects, such as User, Role, Org, ...Specifies the configuration of a generic table listing various things (usually objects).Configuration of additional panels that can be present in some view types.Specifies the set of pages that are used for displaying lists of objects such as Users, Roles, Orgs, ...Specifies the page used to list specific object type or object collection.Specifies form that are used for displaying and editing of specific object type EXPERIMENTAL.Specifies form that are used for displaying and editing of specific object type EXPERIMENTAL.List pages for shadows.Constraint that triggers when the focus has given assignment(s).TODODefinition for self dashboard.TODOTODOHTML export type for Report.Definition of HTTP BASIC authentication module (RFC 7617).Pseudo-authentication for pre-authenticated users.Individual HTTP methods.Definition of HTTP SecQ module.User interface icon specification.This value indicates, whether the evaluation of this role gives the same results regardless of its position in the assignment/inducement hierarchy.Identity recovery management policy.Attributes to be sent to the external ID Match service.What properties should be sent to the ID Match service.State of the process driven by ID Match correlator.Correlation using ID Match service.Composition-enabled ID Match correlator.Error should be ignored and the processing should continue.A segmentation strategy that is interpreted by the specific activity run.The options for import tasks.Definition for an import activity.Inactivates the owning focus for the resource object.Inactivates the resource object.Phase or phases in which the mapping should be evaluated.Configuration of inbound mappings evaluation.What purpose or purposes does the inbound mapping serve?Definition of item normalization (for custom indexing).Configuration for indirect search item.TODO Replace by forms eventually.TODO Replace by forms eventually TEMPORARYTechnical (infrastructure) configuration of midPoint deployment.In Memory Assignment Data ProviderInteger stat (statistic) entry."Fast filter" that can reject a raw operation result.Information about a midPoint internal operation.Defines report on internal operations.Various internals configuration elements.What to do with the changes computed for the given item?Trace for item consolidation.Definition of a property constraints.Definition of correlation-related aspects of a focus item.Definition of a single-item correlator for an item (a resource object attribute or a focus item).Definition of a custom indexing for an item.TODOWhether or how data should be persisted.How item processing ended? Similar to operation result status, but using a different categorization.Information about item processing to be recorded in items report.Specifies the "depth" of item processing.Description of the common item handling details, such as display name, read/write access and value and synchronization expressions.TODOColumns common to all specific item-related reports (like ConnId operations, internal operations, etc).Condition controlling item report creation or collection that is evaluated before or after item is processed.A segment of ItemRouteType.Generalized item path.Correlator that compares individual items.Defines the custom confidence value for given search item.Specifies how to search for the item.Defines report on items processing.Information on items processing (for activity state overview).Composition-enabled items correlator.How to iterate through entities in searchObjectsIterative method.Definition of iteration properties for a resource account or other resource objects.Executes specified changes on specified objects.Executes a script (a.k.a.Representation of JMS message.JMS asynchronous provisioning target.JMS client configurationRepresentation of JMS text message.Define that resource server expect token in format JWT.Defines a system layer.LDAP authentication module supports authentication via LDAP server.Search configuration which uses an Ldap filter to locate the userHow to deal with legacy approvers specifications, i.e.This type exists just to allow (deprecated) "cases" element in legacy synchronization bean.TODOReaction to a synchronization situation.Values of sequences used in the computation.Value of a sequence used in the computation.A serialization of model context, i.e.TODOTODOTODOTODOEnumeration of approval strategies at a particular stage.Specifies the use of Levenshtein edit distance for searching.Specifies restrictions and permissions for a specific library function.Action that reduces (purges) object data.TODO EXPERIMENTALSpecification of lifecycle states and state transitions.Specification of lifecycle state transition.Specification of lifecycle state.Definition of complexity and string policyIn what situations (change-related) does the link match? EXPERIMENTAL.Selects objects among linked ones (for this object).Selects objects among linked sources (for this object).Links resource object to its owning focus.Selects objects among link targets (for this object).Definitions of link types for objects having this archetype.Definitions of a link type.Definition for a live sync activity.State of the live sync activity.Argument that is to be used for localized message parameter.List of localizable messages, to be presented as a single message.A template that produces a localizable message after argument expressions are evaluated into specific arguments.A message that is to be localized into specified language.Single language localization for the message template.This defines the state of account lock-out.Auditing configuration for auditing by using the logging subsystem.TODOConfiguration of logging levels, categories, log files, etc.TODOInformation how to override logging configuration.Definition of "login form" module.Segment of the logfile.Data structure that represents entire content of the lookup table, organized into table rows.An object that represents lookup table.Where and how to send mail notifications (or any other mail messages).Mail nonce authentication module.Configuration of a particular mail server host.Where and how to send mail messages (or any other mail messages).How to ensure transport-level security when sending the message.TODODescribes the context of the manual provisioning request that is represented by a case.TODO ...TODO ...Trace for mapping evaluation operation.Kind of mapping.Information about mapping source during evaluation.See Axiom.TODOTODOMapping state properties after evaluation.Mapping state property.Strength of the mapping defines how aggressively will the mapping be applied.Generic set of mappings.Specification of time-based mapping constraints.Informs that the value was provided by a mapping (and how exactly).Specialization of abstract mapping for regular data mappings.A mark is a "label" given to an object - currently a prism object, an assignment, or audited/simulation event.Configuration of memory diagnostics features.Configuration that specifies automatic merging of two objects.TODODelivery mode.Message property (key-value pair).Specifies the content of the message used with a transport mechanism, for instance mail.Localizable template of the message used with a transport mechanism, for instance mail.A configuration for message transports.Defines handling of a metadata items.Description of the metadata item handling details, such as (TODO)Scope for this metadata mapping.Specialization of abstract mapping for metadata mappings.In what situations should be this mapping template applied?Selection of items to include/exclude when applying given metadata processing.How object metadata should be recorded or updated.Meta-data about data creation, modification, etc.What is to be done when the planned start time arrives without the task actually starting.EXPERIMENTAL.Trace for model's delta execution.Options for execution of Model operations.TODOTODOConstraint that triggers the rule on object modification, addition or deletion.TODOSAML2 key from key store.Possible types of key.SAML2 key from string representation.Information about selected monitored operations.Information about selected monitored operation.Monitored operation.How should we handle the situations when a sub-report produces multiple values?Constraint on multiplicity of assigned objects.Work definition for the multi-propagation activity.How should be a multi-source item handled.Definition of "multi-source" item.Any value (property, reference, container) along with its name.State of this node w.r.t.Node state from the user's point of view.Basic node operational state: whether it is up (e.g.Node describes a single installation of midPoint.Structure that specifies policy for nonce management.Executes a script (a.k.a.Should a step of NoOp activity be interruptible?"No-op" correlation that always returns "certainly no owner" result."No-op" normalization step (for custom indexing).Work definition for a no-op activity.Steps to be applied during item normalization (for custom indexing).How should we handle the situations when a sub-report produces no values?A configuration for user notifications.Message attachment for notifications.XML version of Message (in notifications module).TODOTODOTODOType for notification specific transport configuration.Configuration that is common to all notification transports.Type for more descriptive message transport declaration inside notifiers."Null" work bucket content: does not restrict the query in any way.Work bucket content defined as an interval of numeric values of discriminator item.Segmentation strategy that divides the processing space (represented by an interval of numeric values) into a number of work buckets.Actions executed on a given object type, with given operation (change type) and via given channel.Configuration of object collection-based reports.Specifies a set of object collections ("views") to be displayed (used) at a specific location in the system.Object collection specification.Specifies how a specific collection ("view") is to be displayed (used) at a specific location in the system.TODOTODOSpecifies the set of forms that are used for displaying and editing of objects, such as User, Role, Org, ...Specifies form that are used for displaying and editing of specific object typeDefinition for object integrity check activity.Shadow specific provisioning policy.Position of an object (an item in the language of prism) within midPoint objects structure.Definition of policy for a specific object type.Was the object added, modified, deleted, or unchanged (unmodified)?TODOSelects some objects from all the objects in midPoint.A definition that applies to a set of repository objects.Specifies a set of repository objects to be processed.Defines a synchronization properties (configuration) for a resource.Defines a synchronization properties (configuration) for a resource.Defines a synchronization properties (configuration) for a specific type of object, e.g.Object-template-related settings related to correlation.TODO Description of the common item handling details, such as display name, read/write access and value and synchronization expressions.TODO: update The user template used to create new users.Container for ChangesRequested (focus primary delta and/or projection primary deltas).Common supertype for all identity objects.Configuration for default object type.Specifies how reference variables should be provided for the script.OpenId Connect authentication module.Possible client authentication methods.OpenID Connect client.OpenID Provider.OpenID Connect resource server.Segmentation strategy that divides the processing space into a number of buckets based on OID values.Define that resource server expect opaque token, which have to be verified by user info endpoint.Structure containing metadata about operational state of the resource.The business context of an operation.How operationExecution records should be updated.Information about operation execution record real owner.Type of an operation execution record.Information about an operation executed on an object.Kind of operation (captured by OperationResult).Monitored operation.What monitored operations to trace.TODOSeverity level of operation policy violation.Collection of scripts to be executed for various provisioning operations.Specifies how and when a script is executed during provisioning.Specifies what level of detail should be preserved in the operation result.Strategy for operation result aggregation.Level of importance of given OperationResult.TODOTODOInformation about methods performance.Operation execution statistics/state.Define type of operation.TODOTODODefinition of object with respect to subject membership in organizational hierarchy.Defines applicability scope in the organizational structures.Organizational unit, division, section, object group, team, project or any other form of organizing things and/or people.The object (currently supported are tasks) is orphaned i.e.Limitations related to other privileges, like the ability to complete work items.Counter keyed by a qualified outcome.Selects some objects from all the objects in midPoint.Describes input parameters.Options that allows to select only some of the projector/clockwork parts to process.Specifies whether a particular part should be processed or not.Additional security applied when changing a password.The way how a resource password is compared with the current password.Structure that specifies policy for password management.Additional options for configuring the password hint when changing or resetting the password.Contains a single entry of the password history.TODOConfiguration for a primary change processor aspect.Execution status.Description of an operation that is pending (in progress) or that was recently completed.Type of pending operation.Instructions how to format approvers/reviewers comments before storing them into metadata.Persona construction.Describes an attempt that is to be made.TODOActions that are executed as reactions to triggered policy rules.Common supertype for policy actions.Trace for policy constraint evaluation operation.TODOHow should be triggering of this constraint presented, e.g.References another policy constraint.Set of governance, risk management, compliance (GRC) and similar policy constraints that influence the identity model.Recorded exception from a policy rule.TODO EXPERIMENTALOn what target is the policy rule intended to be evaluated.Trace for policy rule evaluation operation.These rules specify compliance and governance constraints.Constraint that triggers the rule when the object is in a given policy situation(s).Statement specifying explicit include (marking) of object or exclude from specified policy.Specifies limits when is the action executed.Polystring->string normalization step (for custom indexing).TODOTODOPredefined configuration sets.Predefined transformation of an operation requested to specific request.A normalization step taking only prefix into account (for custom indexing).This configuration will pre-provision a disabled account defined time before focus's activation/validFrom date.Used to define preview panels, for now it is only used on home (dashboard), but maybe later, we will need to show tables/forms in preview form also at other places.Configuration for PrimaryChangeProcessor.Prism specific configuration, mainly for performance optimizations and tuningDescribes set of items that are or have been processed.Describes an item (typically an object) that is or has been processed.A configuration for profiling features of midPoint.TODOTODOTODOSpecification of the way how projections are handled on the resource.Trace for Projector component operation.Trace for Projector.project operation.Work definition for the propagation activity.TODOJAXB version of PropertyModificationOperation class.Expression gets IntegerStatType as an input, IntegerStatType is derived from collection.TODOUltimate origin of the data.Specifies data provenance properties for a particular data feed (source), such as resource.Provenance metadata provide high-level information about origin of the value.Configuration of a service provided by midPoint.Trace for provisioning operation.Type of an operation (change).Script argument.An enumeration that defines where the script will be executed.Specifies a script to be executed during provisioning.Statistical information on operations executed on a specified resource, dealing with given object class.Information on operations of given type and result status.Statistical information on operations executed on resources.TODOWork state for a pure composite activity.Item processing outcome plus optional qualification.Defined how the expression will be interpreted in queries when it returns empty (or null) values.Specifies type of quote.Sampling using random distribution of samples.TODOType for recipient expression, which can be either a focus or a string.Recomputes specified objects.Executes the reconciliation.State of the reconciliation activity.TODOTODODefines the target (page/panel/url) to be redirected toCreate an expression that provides a reference based on search results.How to ensure transport-level security when sending the message.TODOTODOSampling using regular distribution of samples.Re-indexes specified repository objects.Definition of a single (custom) relation.Denotes a set of relations serving a single purpose.Definition of (custom) relations.Configuration for relation search item.Configuration structure related to request access UI wizard and its second step - relation selection.TODOBehavior for report.Report configuration based on report configuration schema.Reports outputs.Selects which report engine should be used to render this report.State of the report export activity.Specification of midPoint report.Trace for repository ADD operation.Repository Assignment Data ProviderConfiguring various aspects of the repository - in addition to those that are configured statically using config.xml file.Trace for repository DELETE operation.Trace for repository getObject operation.TEMPORARY - REMOVETrace for repository getVersion operation.Trace for repository MODIFY operation.Information about single repository operation kind (e.g.Trace for repository operation.Information about repository performance.Trace for repository searchObjects/searchObjectsIterative operation.TEMPORARY - REMOVELevel of details when reporting repository performance statistics.How are repository statistics collected.How repository statistics are collected and reported.Defines how the mapping of the activation section is handled for the resource.The state of the resource how the administrator want it to be.Description of the attribute handling details, such as display name, read/write access and value and synchronization expressions.Configuration of resource "business" aspects such as workflow parameters, notifications, approvers, owners, etc.Configuration of consistency mechanisms.TODODescription of the common item handling details, such as display name, read/write access and value and synchronization expressions.Configuration of inbound/outbound resource mappings evaluation.Direction of a resource object association.Describes how entitlement is associated to the subject (e.g.Trace for evaluation resource object construction.Specification of focus objects corresponding to given resource object type.Definition of resource object lifecycle handling.Describes how "multi-accounts" are treated for given object type.Describes the options for an owner of a resource object.An option when choosing an owner for a resource object.Resource object pattern.The strategy used to resolve resource object references.The strategy used to resolve resource object references.Reference to a resource object.How should be the explicit query applied to the default query stemming from resourceRef / objectclass / kind / intent specification.Specifies a set of resource objects to be processed.Description of the change in the external resource.Defines a type of resource objects.Delineates the boundary of a resource object type (i.e.Level of binding between dependent resource objects.TODODescribes a dependency of an object type on another object type.Specifies volatility of resource objects or their attributes, i.e.Resource represents a system or component external to the IDM system which we manage.TODOProcessing of the specified account should be retried later.Hyperlink with a label, menu and other data that control a rich presentation of the link.TODOA set of grouped objects based on density and similarity.Options for Detecting Business Roles These parameters serve as key specifications for performing searches and analyzes aimed at discovering different business roles.Contains information about detected or found patterns.Role analysis detection processing mode.TODORole analysis processing mode (user or role).Object clustering options for "role" mode.The container consists of statistical data about the role analysis session.Session for role analysis, e.g.Configuration structure related to request access UI wizard and its third step - role catalog.Role collection view defines structure that should be shown in request access UI wizard - in role catalog step.A configuration for role management: role catalog, role assignments, etc.Definition of "role membership management" activity.Definition of object with respect to subject relation to a role.A role in the extended Role-Based Access Control (RBAC) sense.SAML2 authentication module support authentication via Identity provider with SAML2.SAML2 key.SAML2 authentication module, network configuration.SAML2 provider.SAML2 provider metadata.SAML2 authentication module, service provider configuration.Possible signing algorithm.Work state for scanning activities (validity scanner, trigger scanner, shadow refresher).Describes the state of the (local) scheduler.Task schedule.Why was this process started? For processes based on policy rules we define it via relevant policy rules.TODO Note that the rule should be triggered.TODOSpecification of handling details for resource schema.Configuration for scope search item.Trace for script evaluation operation.Object(s) on which the script should be executed.TODOData structure that contains all the configuration details for script execution, except for code itself.Generic script expression.The type of the expression result, either "list" or "scalar".Specifies restrictions for execution of script expressions.Information about script variable during evaluation.Configuration of the search box (the set of input fields that control definition of search query).The mode of the search box.The scope of the search box.Describes input parameters for the search filter.Definition of search hierarchy scope.The list of the search properties to be configured for the search panel.Search itemCreate an expression based on search results.Object that contains definitions of overall security policy.Answer to the security question.Definition of a single security question.Structure that specifies policy for security questions.Definition of "security questions form" module.Selector-qualified options for a get-like operation.TODOStructure that specifies policy for password management.Definition of a sequence object that produces unique values.Get a sequential value from a named sequence.This object type represents any kind of abstract or concrete services or devices such as servers, virtual machines, printers, mobile devices, network nodes, application servers, applications or anything similar.TODOAttribute values from the resource.Shadow constraint uniqueness setting.Deletes all shadows that have not been updated for given time.Current state of the correlation process.Expression based on selecting a specific projection.Shadow discriminator uniquely identifies a projection among other projections linked to the same focus.TODOAn aspect of shadow integrity to be diagnosed and/or fixed.Definition for shadow integrity check activity.Defines the kind of a shadow.The lifecycle state of a shadow and the corresponding resource object.Purpose for existence (or non-existence) of a resource object referenced by the shadow.Looks for pending operations in shadows and updates their status.TODOLocal copy of any object on the provisioning resource that is related to provisioning.TODOTODOTODOSimple schema describing how work items for a case should be created.TODOTODOTODOTODOTODOTODOTODOTODODefinition of a specific simulation.Specifies which event marks to consider for given simulation.An aggregation function used to compute the (aggregated) metric value.Specification of how metric values are aggregated.Specification of how is the metric value computed for individual "processed objects".Explicit definition of a metric.Set of dimensions of a partition.The scope of a partition, i.e.Partial or total aggregation of values for given metric.Reference to a metric - either by identifier (for explicitly defined ones) or by mark OID (for event mark based).Definition of the use of simulation metrics for the particular type of simulation.Values of a simulation metric, aggregated along with specific dimensions.A predicate over SimulationResultProcessedObjectType and/or ProcessedObject instances.Container for options that allow selectively switch behavior of different features during simulation or preview changes.Generic option to switch behaviour of feature into safe (transient behaviour) or non-safe mode (behaviour that can leave persistent changes after processing).Specifies which (non-tag) metrics to consider for given simulation.A value of a metric observed on a particular object processed by the simulation.An object that was processed during a particular simulation run.Result of a simulation run.Information about performance of a given (single) cache.Report on the cache state.A message that is to be localized into specified language.Information about single method performance.Where and how to send SMS notifications (or any other SMS).Configuration of a particular SMS gateway.SMS (mobile text message) nonce authentication module.Where and how to send SMS messages (or any other SMS).Specification of a special item that cannot be described by a (fixed) item path.Specification used to select special cases that are usually context-relative.Event describing the completion of a workflow process instance stage.A constraint that triggers when an object or assignment is in a given state.The processing should be stopped.Type of storing exported widget data.TODOWork bucket content defined as interval of string values.Definition of valid single string limitationWork bucket content defined using string value prefix.Work bucket content defined using string value.How to construct work bucket filters based on defined boundary values.Segmentation strategy that divides the processing space (represented by a set of string values) into a number of work buckets; either based on intervals, prefixes or exact value matching.Selects some objects from all the objects in midPoint.Subreport with expression.How should we handle the situations when a sub-report produces either either multiple values, or no values at all?Configuration of the logger: the facility that collects log messages from subsystem code.Specifies the look and feel of the summary panel.Reference to a super-correlator.References super object type.Declares a "super-resource".Stop action.Action(s) that have to be executed in specified synchronization situation.Defines an action to take when a synchronization situation is encountered.TODOTODOTODODefault settings for synchronization reactions.Defines reaction(s) to synchronization-related situations, plus other synchronization settings.Reaction to synchronization situation or situations.Complex description of a synchronization situation.Describes how many times given synchronization situation transition has occurred.TODOHow synchronization situation in shadows should be updated.Defines a synchronization properties (configuration) for a resource.Plain "synchronize" (clockwork-based) action.Specifies details how an audit event record property is created.Details about creation and recording of audit events.Specifies details regarding creation and recording of audit events.Global settings related to correlation.Specifies profile for expression evaluations, execution, restrictions, etc.Global configuration of simulations.System configuration object.OID constants for system objectsHow the tailoring is applied.Configuration structure related to request access UI wizard and its first step - person of interest.Describes the state of the activity or activities embedded in the task (and its subtasks - in the case of a root task).Searchable computed indexes, which tries to capture common parameters used to identify objects (and resource objects), which are expected to be affected by execution of the task.Mode of task auto-scaling.Auto-scaling configuration for the task.Whether a recurring task is bound tightly to one node (having allocated a thread on this node for the whole time of task run) or it should by dynamically placed on any suitable node when its execution time comes.Constraints on task execution, e.g.Specification of the environment in which the task should execute.TODOLimitations for execution of tasks on a given node.Execution state provides information about the task overall high-level execution state.Limitations for execution of a task group on a given node.Whether the task activity is to be executed only once (single-run tasks) or periodically (recurring tasks).Role of the task in the execution of the local root activity.Scheduling state informs about the state of the task regarding its scheduling.TaskType contains information about a task (either transient or persistent).What to do after task is unpaused (i.e.Why is the task in the waiting state?Selects an object by comparing tenant information.What is to be done when the thread allocated to this task stops (e.g.TODO EXPERIMENTAL By default (when the base is not specified), positive time intervals are meant "after work item start".Holds the result of time interval computation with respect to the current date and time.Water mark (bound).TODOA constraint that triggers when validity of an object, assignment, or basically any time-sensitive item (e.g.Specification of the data flow(s) to be visualized.Generic data selection rule.One object.Object dictionary.Selects an operation trace.Root type for tracing information that is embedded in OperationResult objects.What columns to visualize? Volatile - will be changed soon.How to visualize trace file.How to visualize trace file.How a traced operation is to be visualized.Tracing configuration, including profiles to be selected from.Description of the environment where the trace was captured.Level of tracing.Metadata e.g.Output of the tracing.Describes how the tracing is to be done.Points at which tracing can be requested.Describes how the tracing of specific type is to be done.TODORelativity mode of an expression.Specifies how the inner constraints are to be evaluated with regard to operation start and end state.Deals with creation of recompute triggers for selected objects.How much information about triggered policy rules should be stored? EXPERIMENTALExecutes trigger scan on repository objects.Defines triggers for an object.Specifies the use of trigram similarity for searching.Description of the change in the external resource at the UCF level i.e.Type used to represent Java objects that are otherwise unknown to the system and cannot be represented in "canonical" XML form.Unlinks resource object from its owning focus.Object clustering options for "user" mode.Specifies the details of a new credential entered manually by a user.Defines, whether a user interface element (form, widget) will be visible or it will be hidden.Defines properties of a specific user interface feature (e.g.TODOUser object represents a physical user of the system.TODOTODOTODOElement which allows predefined validity duration for requested rolesin request access UI wizard.How to execute validation scan queries.The value metadata.TODOPre-defined set definition, such as all or none.Definition of value set.TODOTrace for expression evaluation operation in AbstractValueTransformationExpressionEvaluator.Trace for transformation of a tuple of values.Type of variables that appear in the script.Definition of variable which is bound to the property.There are cases when you need to force midpoint thinks that user has assigned some role.Item specification to display in containerUsed to specify "virtual" containers for displaying details page in GUI.Water mark (bound).Configuration for workflow change processor.Configuration for workflows - for those parts not stored in the system config file.Configuration related to tasks in which model operations are executed.Scope of execution task serialization.Whether and how to serialize execution tasks (if "execute after all approvals" is set to false).DEPRECATED We need to decide what to do with this.Specification of a process that is to be started.TODOTODO: viliamParameters related to buckets allocation process.State of the work bucket.Description of a state and content of a work bucket.Definition of the work that has to be done within an activity.How to create and manage worker tasks.How to create worker tasks per node.Result of the workers reconciliation process.Actions to execute.Event describing the work item completion.Event describing the fact of delegation.How the delegation should be realized.A request to delegate work item - analogous to AbstractWorkItemOutputType.Event describing the fact of escalation.Description of an escalation level the processing is at.Type of event cause.Process event related to a specific work item.TODO EXPERIMENTALKind of operation.Result (outcome) of a work item.Overall output from a work item: outcome (approve/reject/...), comment, additional delta, and probably other things in the future.Selects some work items from all the items (perhaps of a given type, like approval work items).Actions that should be applied to a work item in given moments (relative to work item creation or work item deadline).This element contains the XSD-formatted definition of schema.Defines how zone of control should be maintained.