You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -55,11 +55,22 @@ Following table lists commonly-used archetypes and their mapping to primary midP
| ServiceType
| Application, Device, Printer, Provider, Network, Web API endpoint
| Application, Device, Printer, Provider, Network, Web API endpoint, Robot
|===
== Birthrights
Archetypes are the primary tool to define a glossref:birthright[birthright provisioning].
Archetypes behave as xref:../roles-policies/rbac/[roles].
Therefore, any privileges specified in archetype xref:/midpoint/reference/roles-policies/assignment/assignment-vs-inducement/[inducements] are automatically applied to all the objects that have the archetype.
This approach can be used to apply _birthright_ to the objects, e.g. it can specify baseline privileges for all employees or students.
Moreover, archetypes may work as xref:/midpoint/reference/roles-policies/metaroles/policy/[metaroles], specifying common behavior for object types.
For example, `Project` archetypes may specify common behavior for all projects, including baseline authorization for project members and managers.
Overall, archetypes provide very flexible and powerful mechanism to specify _birthrights_.
== Archetype Definition
Archetype definition is a special midPoint object (ArchetypeType).
Expand DownExpand Up
@@ -149,4 +160,4 @@ See xref:/midpoint/features/planned/archetypes/[Archetype Improvements (Planned
