Skip to main content

Authorizations descriptor

The authorization descriptor is an XML describing the different authorizations that can be granted to users.

This file should be located at /com/soffid/addon/authorization.xml

The template for this file is:


<?xml version="1.0" encoding="utf-8"?>
<autoritzacions>
 <autoritzacio> 
                <!-- Required: authorization name -->
        <codi>addon:privacy:create</codi>
                <!-- Required: Functional area description -->
        <ambit>Privacy</codi>   
                <!-- Required: authorization full description -->
        <descripcio>Create privacy records</descripcio>
  
                <!-- Optional: scope of the authorization. It can contain a comma separated list of -->
                <!-- GRUP => Group scoped role -->
                <!-- APLICACIONS => Information system scoped role -->
        <tipusDomini>GRUPS</tipusDomini>
                <!-- Optional: how the authorization will spread along business units -->
                <!-- children => the permission will be effective on business unit and its children -->
                <!-- parent   => the permission will be effective on business unit and its parents -->
                <!-- both     => the permission will be effective on business units, its parents and its children -->
        <scope>children</scope>
                <!-- Permissions that will be granted to anyone with this permission -->
        <hereta>
            user:query,
            group:query
        </hereta>
    </autoritzacio>
    ...
</autortizacions>