User Object

2/1/00 Last modified by S. Yang Table of Contents

Definition
Database tables
Related Objects
Access
Allowable Actions
Template
Quicksearch
Fields- definitions, data handling, errors, naming conventions

Definition

The Owner or User object are basically the netdb3 accounts. User names must be identical to the user's SuNetID kerberos principal since netdb authentication is done through Kerberos or WebAuth.

Related Objects

Objects included as fields: Group, Domain

To create, use as template, modify or delete a user requires User Object access. Users can change some choices in their own user profile by clicking on the Profile button on the NetDB front page. These fields are "default domain", "default address space" and "default group". User can only select from those domains, address spaces or groups that they already have access to.

The user object also determines the user's access to other objects (User Object Field) and to groups (Group Field)

Allowable Actions

No special considerations.

Template

When a user is used as a template, the following fields will be inherited:

Dept/Org
other Dept/Org
Group
default Group
Address Space
default Address Space
Domain
default Domain
Object Access
All Objects
All Groups
Templates (not yet implemented)
Active

Quicksearch

No special considerations.

Fields

Name- Field
The name must match the user's SunetID that is the kerberos principal.
Active Account - radio buttons- Yes & No
Default Domain- dropdown
Domains listed in lowercase alphabetical order
Default Address spaces- dropdown or input field
- Input field takes precedence over dropdown field
- Dropdown list sorted in numerical order
- When creating user, all address spaces are listed
- When modifying, list only contain address spaces that user has rights to (same group)
- Acceptable address space format in input field-
  - w.x.y.z/n - existing address space with prefix
    e.g. 171.64.20.0/24
  - w.x.y/n - existing address space without trailing zeroes
    e.g. 171.64.20/24
  - w.x.y.z - existing address space without prefix
    e.g. 171.64.20.0
- LNA Department- select box
  User is official LNA of these departments
- Other Departments- select box
  User is also associated with these departments
- Address Spaces- dropdown
- Default Group- dropdown (if short) or select box (if long)
  List will be the list of member groups. If user has All Groups access, all groups will be listed.
- Group- select box
  Currently if one deletes a group that is the default group, the middleware adds the group back in so the net result is nothing. Current fix is to print a note saying one must change the default group in order to delete it. All users are in the Stanford group by default (allows user to add notes to stanford.edu). When creating a new user, the Stanford group is automatically checked.
- All Groups - checkbox
  If checked, user is not subject to group access restrictions
- Object Access - select box
  If user has object access, the user can create/modify/delete those objects if in the same group.
  - AdminTeam
  - AdvancedNode- special version of Node
  - Domain
  - IPC Provider
  - Network
  - Node
  - Owner
  - Router
  - SystemManagement- access to little o pages. This object is not included under the "All Objects" flag. Must be explicitly assigned.
  - Users
- All Objects - checkbox
  If checked, user has access to all objects except System Management.
- Templates- dropdown
  Not implemented in first release of netdb3
- Comment- field
  Special html characters will be escaped. Char limit?
- Last Logged In
  Date and time
- Created By/ Modified By
  In this format: Sunia Yang (sunia) (25-Jan-00 12:31:08 PM)
- Email
  Cached from directory- cannot be modified from NetDB. Also, cannot be hidden by user through directory restrictions.
- Phone
  Cached from directory- cannot be modified from NetDB. Also, cannot be hidden by user through directory restrictions.