Evaluator (permissions) for users with given form projection who do not have contract in denied organization

This evaluator gives permission to IdmIdentity entity, if:

• Identity is of the selected type (IdmFormProjection).
• Identity does not have any contract in selected denied organisation.

This evaluator does not take contract validity into consideration. This means, that even if user has expired, or DISABLED contract in the denied organisation or its sub-nodes, the evaluator would act as if it was a valid contract and will not give the holder permission to see such identity.

When selecting denied organization, keep in mind that not only the selected node, but also all its sub-nodes will be considered as denied.

Example configuration: