THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Create the new Realm entity, with the following characteristics:
- has a name and a parent realm (except for the pre-defined root realm, which is named '/');
- will be either leaf or root of a sub-tree of realms;
- is uniquely identified by the path from root realm, e.g. /a/b/c identifies the sub-realm 'c' in the sub-tree rooted at 'b', having in turn 'a' as parent realm, directly under root realm;
- optionally refers to account or password policies.
- Update the Role entity by
- removing inheritance;
- removing references to account or password policies;
- adding reference to a realm: each role of a sub-realm will also be role of its parent realm;
- adding multiple reference to realms: selected entitlements will be associated to the given realms.
- Update the User entity by
- adding reference to a realm: each role user of a sub-realm will also be user of its parent realm.
- There won't be global account or password policies any more, but simply account / password policies for the root realm; account and password policies can be optionally defined for a given sub-realm: in this case the resulting policy to be applied will be the composition of all defined policies for ancestor realms up to root realm.
...