Hey Folks,

If you are like me and are tired of the tedious tasks, tired of trying to remember everything about everything, i have a little bit of help for you when it comes to groups and the Group Types.

Have you ever made a Group and itil Group and saved the record, and forgot to add the itil role to the group?   Yeah.   we've all been there (if you're like me.)

We have a bunch of Group Type's and some of those group types need to have roles that go along with them.

So i have a solution.   A set it and forget it thing.

On your Group Type table:   sys_user_group_type,   add 1 field or 2 fields,   your choice.

All that is there is the Name and Description.

Create a true/False field   (Optional Field)   but this way you can turn it off later if you want.

Label: Auto Apply Role

Name/Value:   u_auto

Default: true

2nd field:

Type:   Reference

Label: Role

name/Value:   u_role

Reference:   role(sys_user_role)

Now,   go into your records and add roles as necessary.

NEXT:
Create a script include:

Name:   GroupHelper

Accessible From:   All Application Scopes

Active: True

Script:

var GroupHelper = Class.create();
GroupHelper.prototype = {
initialize: function() {
},
removedGroups: function(previousType, currentType) {
var removedArray = [];
var prevArray = previousType.toString().split(",");
for (var i=0; i< prevArray.length; i++) {
if(currentType.toString().indexOf(prevArray[i]) == -1){
removedArray.push(prevArray[i]);
}
}
return removedArray.toString();
},
addedGroups: function(previousType, currentType) {
var addedArray = [];
var curArray = currentType.toString().split(",");
for (var i=0; i< curArray.length; i++) {
if(previousType.toString().indexOf(curArray[i]) == -1){
addedArray.push(curArray[i]);
}
}
return addedArray.toString();
},
type: 'GroupHelper'
};

NEXT:

Create a Business Rule:

Name:   Add/Remove Roles by Group Type

Table:   Group (sys_user_group)

Active: true

Advanced: true

When:   Before

Insert: true

Update: true

Filter Conditions:       Type,   Changes

Script:

(function executeRule(current, previous /*null when async*/) {
var previousType = previous.type;
var currentType = current.type;
var removed = new GroupHelper().removedGroups(previousType, currentType);
var added = new GroupHelper().addedGroups(previousType, currentType);
if(!added.nil()){
var addedArray = added.split(",");
for (var a=0; a < addedArray.length; a++) {
var groupType = new GlideRecord("sys_user_group_type");
groupType.get(addedArray[a]);
var auto = groupType.u_auto;
var grRole = groupType.u_role;
if(grRole != ''){
//gs.addInfoMessage("Group Role/Auto:   " + grRole + "   -   " + auto);
var GroupHasRole = new GlideRecord("sys_group_has_role");
GroupHasRole.addQuery('group', current.sys_id);
GroupHasRole.addQuery('role', grRole);
GroupHasRole.query();
if (!GroupHasRole.next()){
if (auto == true){
GroupHasRole.group = current.sys_id;
GroupHasRole.role = grRole;
GroupHasRole.inherits = 'true';
GroupHasRole.insert();
gs.addErrorMessage( "***ADDED***   " + grRole.getDisplayValue().toUpperCase() + " - ROLE HAS BEEN ADDED TO THE GROUP BASED ON THE GROUP TYPE: " + groupType.name.toUpperCase() + "   - See group type table -   " + "       ***ADDED***");
}
}
}
}
}
if(!removed.nil()){
var removedArray = removed.split(",");
for (var i=0; i< removedArray.length; i++) {
var groupType1 = new GlideRecord("sys_user_group_type");
groupType1.get(removedArray[i]);
var auto1 = groupType1.u_auto;
var grRole1 = groupType1.u_role;
if(grRole1 != ''){
var GroupHasRole1 = new GlideRecord("sys_group_has_role");
GroupHasRole1.addQuery('group', current.sys_id);
GroupHasRole1.addQuery('role', grRole1);
GroupHasRole1.addQuery('inherits', 'true');
GroupHasRole1.query();
if (GroupHasRole1.next()){
if (auto1 == true){
GroupHasRole1.deleteRecord();
gs.addErrorMessage("***REMOVED***   " + grRole1.getDisplayValue().toUpperCase() + " - ROLE HAS BEEN REMOVED FROM THE GROUP BASED ON THE GROUP TYPE: " + groupType1.name.toUpperCase() + "   - See group type table -   " + "       ***REMOVED***");
}
}
}
}
}
})(current, previous);

Save that,     Now test it out!

Now,   Please forgive the Code,   it may not be a "Best Practice"   code, but it works and gets the job done.

I'm interested to hear comments and other ideas for this.