Date: TBA | Time: TBA

AMI Praha: Archetypes as UX Contracts: Designing Role-Aware Interfaces in MidPoint

Customizing the midPoint UI for different roles sounds straightforward – until archetypes, RBAC, and system configuration start interacting in unexpected ways. Many implementations attempt to shape the UI through roles alone, only to end up with fragile configurations, inconsistent interfaces, and administrators who no longer understand why the UI behaves the way it does. In this session, Radim Halfar will challenge that approach and introduce the concept of archetypes as UX contracts: a clear separation where archetypes define how objects are presented and managed, while roles control who is allowed to do what. Through a live configuration walkthrough, you will explore the real pitfalls of role-aware UI design in midPoint – misplaced configuration, conflicting responsibilities between archetypes and roles, and subtle behaviors that can break the administrator experience. You will see working configuration patterns that combine archetype-driven UI definitions with RBAC-driven authorization, including practical examples of registration UI customization and object ownership models. If you have ever wondered why your midPoint UI customization became harder to maintain than the identities it manages, this session will show you how to design interfaces that are predictable, scalable, and actually understandable.