Book Creator
 Add this page to your book
Book Creator
 Remove this page from your book  

 Manage book(0 page(s))
 Help

Evaluator (permissions) for users with given form projection who do not have contract in denied organization

This evaluator gives permission to IdmIdentity entity, if:

  • Identity is of the selected type (IdmFormProjection).
  • Identity does not have any contract in selected denied organisation.

Contract validity

This evaluator does not take contract validity into consideration. This means, that even if user has expired, or DISABLED contract in the denied organisation or its sub-nodes, the evaluator would act as if it was a valid contract and will not give the holder permission to see such identity.

Tree node hierarchy

When selecting denied organization, keep in mind that not only the selected node, but also all its sub-nodes will be considered as denied.

Example configuration:

Example configuration of IdentityFormProjectionAndOrgEvaluator

  • by sourek