Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-2100

Can't use object template in deleted synchronization action - causes removing of user attribute values

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 3.0 (Newton)
    • Fix Version/s: 3.1 (Sinan)
    • Component/s: None
    • Labels:
      None

      Description

      1. Localhost CSV sync sample is used with small modifications, see below
      2. user is created in midPoint using liveSync
      3. role is assigned to the user - user is provisioned
      4. synchronization action "deleted" is extended:

               <reaction>
                  <situation>deleted</situation>
                  <synchronize>true</synchronize>
                  <objectTemplateRef oid="c0c010c0-d34d-b33f-f00d-777222222222"/>
                  <action ref="http://midpoint.evolveum.com/xml/ns/public/model/action-3#inactivateFocus"/>
                  <action ref="http://midpoint.evolveum.com/xml/ns/public/model/action-3#unlink"/>
               </reaction>
      

      5. the object template contains only one mapping to set user/nickName=DELETED:

         <mapping>
            <strength>strong</strength>
            <expression>
               <script>
                  <language>http://midpoint.evolveum.com/xml/ns/public/expression/language#Groovy</language>
                  <code>return 'DELETED'</code>
               </script>
            </expression>
            <target>
               <c:path xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3">nickName</c:path>
            </target>
         </mapping>
      

      6. user is deleted from source CSV (line deleted). User is disabled, other accounts are disabled, object template is processed, nickName is set to DELETED, but attributes givenName and familyName are set to null.

      As those are set in the source resource, this must be caused by inbounds.

      Setting authoritative to "false" in the inbound mappings in the source CSV resource, e.g.:

      <inbound>
                     <authoritative>false</authoritative>
                     <target>
                        <c:path xmlns:c="http://midpoint.evolveum.com/xml/ns/public/common/common-3">$user/name</c:path>
                     </target>
                  </inbound>
      

      does not help...

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              vix Ivan Noris
              Reporter:
              vix Ivan Noris
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: