This page describes how to manage groups at the command line. You should be familiar with the permission system .
User groups are entries in the “groups” table with "group_class": "role"
.
arv group create --group '{"name": "My new group", "group_class": "role"}'
There are two separate permissions associated with group membership. The first link grants the user can_manage
permission to manage things that the group can manage. The second link grants permission for other users of the group to see that this user is part of the group.
arv link create --link '{ "link_class": "permission", "name": "can_manage", "tail_uuid": "the_user_uuid", "head_uuid": "the_group_uuid"}' arv link create --link '{ "link_class": "permission", "name": "can_read", "tail_uuid": "the_group_uuid", "head_uuid": "the_user_uuid"}'
A user can also be given read-only access to a group. In that case, the first link should be created with can_read
instead of can_manage
.
arv group list --filters '[["group_class", "=", "role"]]'
Use the command jq to extract the tail_uuid of each permission link which has the user uuid.
arv link list --filters '[["link_class", "=", "permission"], ["head_uuid", "=", "the_group_uuid"]]' | jq .items[].tail_uuid
This will give all members of the group can_manage
access.
arv link create --link '{ "link_class": "permission", "name": "can_manage", "tail_uuid": "the_group_uuid", "head_uuid": "the_project_uuid"}'
A project can also be shared read-only. In that case, the first link should be created with can_read
instead of can_manage
.
Use the command jq to extract the head_uuid of each permission link which has the object uuid.
arv link list --filters '[["link_class", "=", "permission"], ["tail_uuid", "=", "the_group_uuid"]]' | jq .items[].head_uuid
This will remove access for members of the group.
The first step is to find the permission link objects. The second step is to delete them.
arv --format=uuid link list --filters '[["link_class", "=", "permission"], ["tail_uuid", "=", "the_group_uuid"], ["head_uuid", "=", "the_project_uuid"]]' arv link delete --uuid each_link_uuid
The first step is to find the permission link objects. The second step is to delete them.
arv --format=uuid link list --filters '[["link_class", "=", "permission"], ["tail_uuid", "in", ["the_user_uuid", "the_group_uuid"]], ["head_uuid", "in", ["the_user_uuid", "the_group_uuid"]]' arv link delete --uuid each_link_uuid
The content of this documentation is licensed under the
Creative
Commons Attribution-Share Alike 3.0 United States licence.
Code samples in this documentation are licensed under the
Apache License, Version 2.0.