Allow group managers to add/remove users to groups

Go to solution
Community Alums
Not applicable

‎02-07-2023 07:51 AM

I am trying to set up access to allow group managers to add/remove users from their groups. I have attempted to create ACL's against sys_user_grmember but have been unsuccessful.
The group managers need to be able to add/remove users to the groups, 

Please provide any suggestion, how can I achieve this.

 

Thanks in advance..!!

0 Helpfuls
  • 3,508 Views
1 ACCEPTED SOLUTION

Go to solution
BharathChintala
Mega Sage
In response to lakshmi53678495

‎04-21-2023 07:43 AM

@lakshmi53678495 @Community Alums 

Try Below ACL Script with no role

Create Delete and Write ACL on table level (‘sys_user_grmember’) 

check advanced 

in script write below

 

if(typeof parent != 'undefined' && parent.manager == gs.getUserID()){
   answer = true; //Allow access if user has 'user_admin' role or is group manager
}else{

answer = false;

}

If my inputs have helped with your question, please mark my answer as accepted solution, and give a thumb up.
Bharath Chintala

View solution in original post

0 Helpfuls
6 REPLIES 6

Go to solution
BharathChintala
Mega Sage
In response to lakshmi53678495

‎04-21-2023 07:43 AM

@lakshmi53678495 @Community Alums 

Try Below ACL Script with no role

Create Delete and Write ACL on table level (‘sys_user_grmember’) 

check advanced 

in script write below

 

if(typeof parent != 'undefined' && parent.manager == gs.getUserID()){
   answer = true; //Allow access if user has 'user_admin' role or is group manager
}else{

answer = false;

}

If my inputs have helped with your question, please mark my answer as accepted solution, and give a thumb up.
Bharath Chintala
0 Helpfuls

Go to solution
Shanmuga Sunda2
Tera Contributor
In response to BharathChintala

‎08-04-2023 02:38 AM

Hello @BharathChintala 

 

We have created a list of groups which are specific to a particular customer. We are trying to grant the "user_admin" role to the parent group so that child groups can be managed by parent group. 

 

Issue: But when granting the "user_admin" role to the parent group, the members belong to that group have access to modify all the groups and not only the groups that are specific for customer which is expected OOB functionality.

 

Requirement: Parent group members should edit only the child groups that belongs to a specific application and not globally. For instance, my application would be "Microsoft" and not "Global". Any assistance in this regard is much appreciated.

Thanks in advance!

0 Helpfuls