What Is a Realm Role in Ztrust?
Realm Role is:
A global role within a realm.
Useful for cross-client permissions or admin-level roles.
Can be assigned directly to users or indirectly through composite roles.
Fig 3.3.a: List of avalible realm roles You can use the search box to find a specific role.
Click the Refresh button to see the latest settings.
Fig 3.3.b: Show number roles per page You can also choose how many roles you want to display on one screen. Select your preferred option from the dropdown menu as shown above.
It includes the list of all the different roles that are already defined in ZTrust.
This setting can be either True or False.
When set to True, it means that when this particular role is assigned or unassigned to a user, any associated roles will also be automatically assigned or unassigned to the user.
When set to False, no other roles will be linked with this role.
It refers to the description for the role which will aid you in identifying its purpose.
This field can be localized by specifying a substitution variable with ${var-name} strings.
Fig 3.3.c: Option to delete role After clicking on the three dots, you'll find the option to delete the role.
To remove any roles at the realm level, simply click on Delete.
After selecting Delete, a confirmation prompt will appear.
Click Delete to remove the role, or click Cancel to keep it.
Fig 3.3.d: Conform to delete the role If you want to add a new role, click on Create Role.
After clicking on Create Role, you will be directed to the following screen.
Fig 3.3.e: Role creation page It indicates the name of the specific role.
It refers to the description for the role which will aid you in identifying its purpose.
After entering the Name and Description, if you wish to create the role, click on Save.
If you don’t want to apply those changes, click on Cancel to discard those changes.
After clicking on Save, you will be redirected to the below screen
Fig 3.3.f: Realm role page Here, the details will be mentioned as given by you during the role creation.
Fig 3.3.g: Role attribute tab Within the Attributes section, you have the ability to define any variable you require for the specific Role.
After clicking on Add attributes, you will be directed to the following screen to add the Key-Value Pair.
Just provide the Key, which is the variable you want to define, and then input its corresponding Value.
Click Add attributes to save the Key-Value pair.
Fig 3.3.h: Role attribute creation To remove a specific Key-Value pair, click on the '-' button.
Once you've entered the required details, if you want to implement the changes, click on Save.
If you don’t want to apply those changes, click on Revert to discard those changes.
Fig 3.3.i: Users in Role section In the Users in Role section, you can view the various users assigned to that specific role.
To add users to this role, click on Users. You will be taken to the Users tab (as shown below), where you can add the necessary users.
Furthermore, you can assign specific user groups to this role by selecting Groups, which will take you to the Groups tab (as illustrated below), where you can add the role to the groups.
Fig 3.3.k: List available Groups Fig 3.3.l: Options to add or delete roles in groups In the dropdown menu for Actions, you have the option to either Add associated roles or Delete this role.
Selecting Add associated roles will display the following screen.
Fig 3.3.m: List of available roles You can also search for a specific role by using the search box.
Click the Refresh button to see the latest settings.
Fig 3.3.n: Show number roles per page You can also choose how many roles you want to display on one screen. Select your preferred option from the dropdown menu as shown above.
You can then select the checkbox for the specific role you want to associate with this role. Click on the checkbox to select the role, then click on Assign.
If you decide not to associate the selected roles, click on Cancel to discard the changes.
Fig 3.3.o: Filter by client roles You also have the option to filter roles based on the clients.
Fig 3.3.p: Available role by client You can also search for a specific role by using the search box.
Click the Refresh button to see the latest settings.
Fig 3.3.q: Show number roles per page You can also choose how many roles you want to display on one screen. Select your preferred option from the dropdown menu as shown above.
You can then select the checkbox for the specific role you want to associate with this role. Click on the checkbox to select the role, then click on Assign.
If you decide not to associate the selected roles, click on Cancel to discard the changes.
