Reducing end user role authorizations (get should be enough)

Evolveum · Sep 17, 2018 · affb5f9 · affb5f9
1 parent 8f51c1a
commit affb5f9
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/gui/admin-gui/src/main/resources/initial-objects/040-role-enduser.xml b/gui/admin-gui/src/main/resources/initial-objects/040-role-enduser.xml
@@ -150,14 +150,14 @@
     	</object>
     </authorization>
     <authorization>
-    	<name>assignment-target-read</name>
+    	<name>assignment-target-get</name>
     	<description>
     		Authorization that allows to read all the object that are possible assignment targets. We want that
     		to display the targets in the selection windows.
     		Note that this authorization may be too broad for production use. Normally it should be limited to just
     		selected properties such as name and description.
     	</description>
-        <action>http://midpoint.evolveum.com/xml/ns/public/security/authorization-model-3#read</action>
+        <action>http://midpoint.evolveum.com/xml/ns/public/security/authorization-model-3#get</action>
         <object>
             <type>OrgType</type>
         </object>