Hyland Connect

stideswe · ‎09-08-2008

Hello

I have noticed that when I create a new user in Alfresco that the user is given "All Roles" access at the "Company Home" level. This is not desirable: I'd prefer for the new user to have no rights to any content and then to only get rights once added to some groups I have configured. Is there a way to control the access rights granted when I create a new user?

On a related matter. Is there a way that I can create the new user with some simple SQL queries programmatically rather than using the web interface? This would be highly convenient for bulk creation of users on the system.

Thanks for any help you can provide.

Simon

spotlight2001 · ‎09-10-2008

direct sql is not very recommendable.

we used an approach of:
* web scripts (javascript): the entry point
* java extensions : backing logic

the WIKI describes it quite nicely. you might want to have also a look at the Alfresco Maven AMP Plugin.

resulting in the following:
* you can create users programmatically via WEB-URL (POST)
* an AMP (alfresco module package)

This approach required some "assembly", but once you are through, it is quite flexible.
We reused code from the Alfresco Web-Client module (source code is available).

kind regards

stideswe · ‎09-18-2008

Hello Spotlight

Thanks for your reply. The reason why I wanted to use SQL and modify the tables directly is that we have an "Identity Management" solution that would allow us to create users in the DB based on LDAP accounts. I know I can use LDAP directly but I gather I lose cool things like the CIF's capability if I do that. So it seemed like a good option to integrate Alfresco with our LDAP (not Active Directory by the way) by using the Identity Management solution.

I might create a dump of the DB before and after creating a user to try and work out what tables/rows are altered.

Simon

Hyland Connect

Default access rights for a new user