-
Sub-task
-
Resolution: Done
-
Normal
-
None
-
None
-
None
-
False
-
-
False
-
Unset
-
-
-
Access & Management Sprint 81, Access & Management Sprint 82, Access & Management Sprint 83, Access & Management Sprint 84, Access & Management Sprint 85, Access & Management Sprint 86, Access & Management Sprint 87, Access & Management Sprint 88, Access & Management Sprint 89, Access & Management Sprint 90, Access & Management Sprint 91, Access & Management Sprint 92, Access & Management Sprint 93, Access & Management Sprint 94, A&M Tech Debt Q10, Access & Management Sprint 95, Access & Management Sprint 95, Access & Management Sprint 96, Access & Management Sprint 97
We could either expand our current cleanup job to take extra safety measures (such as making sure that the principal has been gone for X amount of weeks in IT before removing it from RBAC).
This could be achieved by adding a field in the principal table for being inactive and writing logic around it to check for the date/ check that it was already marked inactive once before to remove it.
Or we could investigate moving to track messages on IT's UMB about user activities (such as deletion) and moving to an async task.
NOTE:
Clean up job calls BOP proxy for each principal here.
we need to investigate where there possibility to reduced number of calls to BOP and it endpoint - this could be also solved with IT's UMB.
