The service adds a role to a user, defining whether the role is to be qualified to a specific group or user ownership, and deciding whether the role assignment is transitive or non-transitive which decides about whether the receiving user is allowed to pass on the permissions obtained from this role assignment to other users.
| Request Method: | PUT /add_role_to_user |
| Output format: | Only the status code is relevant. 2xx for success. |
| Query parameters: |
username Name of the user to which to assign the role
role_definition_id Unique ID of the role definition, telling which role to assign to the user
qualifying_group_id Optional unique ID of the user group for which to qualify the role assignment. If provided,
the role's permissions will only be granted to the user if the object to which
the permission applies is owned by the group identified by this ID.
qualifying_username Optional name of the user for which to qualify the role assignment. If provided,
the role's permissions will only be granted to the user identified by username
if the object to which the permission applies is owned by the user identified by
qualifying_username.
transitive Tells whether the role assignment is transitive; if true, the user identified by
username will be able to pass on the permissions from the role assignment to
other users. Default is false.
|
| Example: | curl -X PUT -H "Authorization: Bearer MVPg/uCV1QGqMDmDtUuOQBrSrB1NlIldm0LW+dnxZ2A=" "http://admin:admin@127.0.0.1:8888/security/api/restsecurity/add_role_to_user?username=valerie&qualifying_group_id=82832851-07ac-47ee-9ddf-6f4f9eaa7823Will provide a 200 response as explained above. |