This service checks for a specified role by name.


Argument Type Description
auth (optional) Auth The Auth type supplies credentials and optionally, a host name for licensing. The userId and password can be specified with HTTP BASIC or WS-SECURITY instead.
group GroupIdentifier The group to check against.
role RoleIdentifier The role to verify.


A boolean is returned, showing whether the group has the role (true) or not (false). Either inherited or explicitly granted roles are taken into account. The role is checked in the context of the specified group. For example:



You can call GetGroupRoles for a group to return a list of available roles. You can then use these roles in the HasGroupRole call.

The <urn:group> and <urn:role> parameters uniquely identify the group and role. Providing the <urn:projectId> value in the GroupIdentifier improves performance of the call, especially for the systems with several projects.



The following XML is a snippet of the payload this is sent with HasGroupRole.

        <urn:displayName>IDM View Only</urn:displayName>
        <urn:displayName>IDM Manager</urn:displayName>
            <urn:displayName>IDM Project</urn:displayName>