Role Membership Not Evaluated When Using Custom Event Handler
(Doc ID 1533122.1)
Last updated on MARCH 09, 2019
Applies to:Identity Manager - Version 126.96.36.199.2 and later
Information in this document applies to any platform.
Scenario: When an UDF field is assigned a value using APIs and a membership rule matches it, but the role associated with the rule is not assigned to the user.
How to reproduce :
1) A user is updated via oim web console, the identity's field "User Authorization Status" is changed to "Yes" ("User Authorization Status" is a UDF)
2) After previous update a custom post process event handler detects this new attribute value and perform an update on another identity's field ("UDF Identity Status = Enabled")
3) Associated to this last field there is a membership rules that defines the criteria to bring a user in a role.
4) The role is not present in the role's tab for the user, even when hitting "refresh". If the membership rule is triggered by the 1st attribute and not the 2nd one, the role is assigned (as expected).
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!