sec:user-add-roles( $user-name as xs:string, $role-names as xs:string* ) as empty-sequence()
Adds the roles ($role-names) to the list of roles granted to the user ($user-name).
If a user with name equal to $user-name is not found, an error is returned.
If one of the $role-names does not correspond to an existing role, an error is returned.
If the current user is limited to granting only his/her roles, and $role is not a subset of the current user's roles, then an error is returned.
Parameters | |
---|---|
user-name | The name of a user. |
role-names | A sequence of role names. |
http://marklogic.com/xdmp/privileges/user-add-roles
http://marklogic.com/xdmp/privileges/grant-all-roles
orhttp://marklogic.com/xdmp/privileges/grant-my-roles
This function must be executed against the security database.
xquery version "1.0-ml"; import module namespace sec="http://marklogic.com/xdmp/security" at "/MarkLogic/security.xqy"; sec:user-add-roles("Jim", ("merge", "alert-user")) (: Adds the roles, "merge" and "alert-user," to Jim's existing roles. :)