xdmp functions (Security)

The security built-in functions are XQuery functions to perform many security-related tasks in MarkLogic Server.

18 functions

Function name	Description
xdmp:amp	Returns the amp ID for the specified amp.
xdmp:amp-roles	Returns the set of all roles assigned to an amp, including roles directly assigned to the amp and roles inherited by other roles.
xdmp:can-grant-roles	Tests whether a user can grant or revoke a set of roles.
xdmp:default-collections	Returns the collections any new document would get if the current user were to insert a document without specifying the collections.
xdmp:default-permissions	Returns the permissions any new document would get if the current user were to insert a document without specifying the default permissions.
xdmp:document-get-permissions	Returns the permissions to a given document.
xdmp:get-current-roles	Returns all the current roles, both assigned and inherited by the current user and any received from amps.
xdmp:get-current-user	Returns the name of the current user.
xdmp:get-request-user	Returns the id of the current user.
xdmp:has-privilege	Tests whether the current user has at least one of a given set of privileges.
xdmp:permission	Returns a permission element in the security namespace corresponding to the named role and capability given.
xdmp:privilege	Returns the privilege ID for the specified privilege name.
xdmp:privilege-roles	Returns the set of all roles that have a given privilege.
xdmp:role	Returns the role ID for the specified role name.
xdmp:role-roles	Returns the set of all roles inherited by a given role, including roles directly assigned to the role and roles inherited from other roles.
xdmp:security-assert	Tests whether the current user has at least one of a given set of privileges.
xdmp:user	Returns the user ID for the specified user name.
xdmp:user-roles	Returns all roles assigned to a user, including roles directly assigned to the user and roles inherited by other roles.