Loading TOC...

sec.roleAddRoles

sec.roleAddRoles(
   $role-name as String,
   $new-roles as String[]
) as null

Summary

Adds new roles ($new-roles) to the role specified by $role-name.

If a role with name equal to $role-name is not found, an error is returned.

If one of $new-roles does not correspond to an existing role, an error is returned.

If the current user is limited to granting only his/her roles, and $new-role is not a subset of the current user's roles, then an error is returned.

Parameters
$role-name The name of the role.
$new-roles The roles to add to the role.

Required Privileges

http://marklogic.com/xdmp/privileges/role-add-roles
and for role assignment:
http://marklogic.com/xdmp/privileges/grant-all-roles or
http://marklogic.com/xdmp/privileges/grant-my-roles

Usage Notes

This function must be executed against the security database.

Example


// execute this against the security database
declareUpdate();   
const sec = require('/MarkLogic/security.xqy');

sec.roleAddRoles("Contractor", "filesystem-access")

// Adds the "filesystem-access" role to the "Contractor" role and leaves
   any previously assigned roles intact. 
   

Stack Overflow iconStack Overflow: Get the most useful answers to questions from the MarkLogic community, or ask your own question.