jacl or jython script to create Administrative group roles and assign them

Hi

Can someone provide me a jacl or jython script to create Administrative group roles and assign  user roles.

I'm running WAS 6.1.

Thanks
ahobalrao9Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

HonorGodSoftware EngineerCommented:
Something like this perhaps?
# role     is the name of the role
# everyone is yes or no to say if everyone has the role
# allAuth  is yes or no to say if every authenticated
#          user has the role
# users    is a LIST of strings, one for each user
# groups   is a LIST of strings, one for each group
 
# create a single role mapping
roleMapping = [role, everyone, allAuth, '|'.join(users), '|'.join(groups)]
 
# The construct '|'.join(list) converts the list of Strings
# into the single '|' separated string we need.
 
# put that role within a list.
roleMappings = [rolemapping]
 
# If we had multiple roles, we would create
# additional roleMapping values, and append
# them to roleMappings, e.g.,
# roleMappings = [role1Mapping role2mapping & roleNmapping]
 
# finally, create the list the defines the task
options=["-MapRolesToUsers", roleMappings]
 
# All that remains is to apply this to the application
AdminApp.edit(application, options)

Open in new window

0
ahobalrao9Author Commented:
Wonderful....Thanks for the prompt response.

This is exactly i'm looking for...will it be possible to send the full script,it would greatly help.

Thanks
0
HonorGodSoftware EngineerCommented:
I haven't written a "full script", at least not yet.

the above is from an upcoming book...

http://www.amazon.com/dp/0137009526
0
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

HonorGodSoftware EngineerCommented:
I can't do it right now... maybe later today...
0
ahobalrao9Author Commented:


Thank you ...would be reallyl great and surely helpful ...if you can..

Thanks in advance.
0
HonorGodSoftware EngineerCommented:
I'm working on it.  :-)

Sorry it is taking so long.
0
ahobalrao9Author Commented:

Thank you..Its fine..If you could script.

Thanks
0
HonorGodSoftware EngineerCommented:
0
ahobalrao9Author Commented:
0
HonorGodSoftware EngineerCommented:
Something like this perhaps?

To execute it:
- Open a command prompt
- "cd" to the appropriate bin directory
  e.g., > cd /d D:\IBM\WebSphere\AppServer\profiles\AppSrv00\bin
- Specify this file on the wsadmin command prompt
  e.g., > wsadmin -lang jython -modifyAppRoles.py

  This will display the program usage information.
modifyAppRoles.py.txt
0
ahobalrao9Author Commented:


Thank you and really appreciate for the script.

But i'm sorry that i could not explain the question propery.

What i'm looking for is .....to createAuthorizationGroup , mapGroupsToRoles and then mapUsersToRole.

http://publib.boulder.ibm.com/infocenter/wasinfo/v7r0/index.jsp?topic=/com.ibm.websphere.express.doc/info/exp/ae/rxml_7libsecurity.html

All this is done..when we enable the global security in admin console...and need to give access to users with different authorisation roles.

Apolizise for the confusion..if i could get help in this,it would be really helpful.
0
HonorGodSoftware EngineerCommented:
Ah.  I'll see what I can do...  Sorry for the misunderstanding.
0
ahobalrao9Author Commented:


Thanks a lot
0
HonorGodSoftware EngineerCommented:
Here's a script that can be used to create, list, or delete authorization groups.

Usage information is displayed if no parameters are provided.

wsadmin -lang jython -f AuthGroups.py

I'll have to take a look at mapGroupsToRoles next.
AuthGroups.py.txt
0
ahobalrao9Author Commented:

Wonderful.....Thanks you.
0
HonorGodSoftware EngineerCommented:
According to understanding, once you create a role (see AuthGroups.py), you should be able to use modifyAppRoles.py (http:#a24908709) to map a group to that role.  

You need to remember that the definition of security roles must be performed by the application developer during the design, and implementation of the application.  It makes no sense to add a role to an application if the application isn't going to use that role.

Does this make sense?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
HonorGodSoftware EngineerCommented:
Please explain the grade of B.  I'm confused.
0
Andrej PirmanCommented:
By my oppinion HonorGod should at least receive grade A, or better to be additionally rewarded - he provided the complete solution!
0
ahobalrao9Author Commented:


Yes..i agree..Apolizise for my innosence.
0
HonorGodSoftware EngineerCommented:
Thank you.

ahobalrao9 - Thanks, and good luck.

I'll be around if you have more questions.
0
ahobalrao9Author Commented:


Thanks
0
praasanthCommented:

Hi ..I'm also tring the same and able to do that.

The issue i have is..
Even before creating the group roles and user roles...i need to perform a check in the external file, if the roles defined are valid or not (say if there are any typing errors)....if so the script should exit even without creating the group roles also.
Say i'm using the same code as above and WAS 6.1.23
Any suggestion please
0
HonorGodSoftware EngineerCommented:
open a new (related) question, and provide complete details.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Java App Servers

From novice to tech pro — start learning today.