Loading TOC...

sec:user-add-roles

sec:user-add-roles(
   $user-name as xs:string,
   $role-names as xs:string*
) as empty-sequence()

Summary

Adds the roles ($role-names) to the list of roles granted to the user ($user-name).

If a user with name equal to $user-name is not found, an error is returned.

If one of the $role-names does not correspond to an existing role, an error is returned.

If the current user is limited to granting only his/her roles, and $role is not a subset of the current user's roles, then an error is returned.

Parameters
user-name The name of a user.
role-names A sequence of role names.

Required Privileges

http://marklogic.com/xdmp/privileges/user-add-roles
and for role assignment:
http://marklogic.com/xdmp/privileges/grant-all-roles or
http://marklogic.com/xdmp/privileges/grant-my-roles

Usage Notes

This function must be executed against the security database.

Example


xquery version "1.0-ml";
import module namespace sec="http://marklogic.com/xdmp/security" at 
    "/MarkLogic/security.xqy";
   
sec:user-add-roles("Jim", ("merge", "alert-user"))

(:  Adds the roles, "merge" and "alert-user," to Jim's existing roles. :)  
  

Stack Overflow iconStack Overflow: Get the most useful answers to questions from the MarkLogic community, or ask your own question.