I can not find proper documentation on this feature:
I went through the documentation but could not find any sample queries, OR the list of variables that can be used to make the queries.
Without this information we are unable to implement our use cases.
> How to allow only certain users to view and request Application Roles in Saviynt?
> How to only allow those users who are a member of a certain saviynt group?
> Is it possible to allow different roles to different set of users based on the users attributes or group memberships?
I only want to allow the users with customproperty1 set to "RoleRequestor", rest of the people should not be able to see the application roles on the request form but they can request a new account without application roles.
"Role Requestor" can request for themselves as well as for everyone else. Is it possible to set this up?
I tried setting up a sql single select dynamic attribute called "roleRequestor" with the query:
select customproperty50 as ID from users where username = '${user.username}'
I have this query in Application Role Request Query:
r.status=1 and r.customproperty10 =${roleRequestor}
And I have set the user.customproperty50 = "RoleRequestor" and role.customproperty10 = "RoleRequestor"
Is this the correct process? Because I can see the roles even after changing user.customproperty50 to a different value, am I doing something incorrectly?
I think it was taking some time to update even after running the microservices job, now form is not even loading at all:
Unfortunately I've already tried these things:
- Run the microservices job from control panel
- run ECMv6/api/clean-cache from Postman
- Restart the server
- Waiting
However the form starts working after I remove the role request query and the DA seems to be fetching the value correctly :
I changed the attribute name to da1 and role request query to just
r.customproperty1 = '${da1}'
Doesn't seem like my query is getting printed in logs, I searched with da1 as well as *da1* and I get nothing.
Not getting any clues from browser console either:
