The dicfg add command adds users, groups, and aliases to a DiveLine server. The command has the following sub-commands. Click a command name to display a description, including any additional command options.
alias
| Command | Description |
|---|---|
| dicfg add alias | Adds a new DiveLine alias. |
|
-source <name> -destination <path>
|
Creates a new alias, using the specified name and path. |
group
| Command | Description |
|---|---|
| dicfg add group | Adds a new DiveLine group. |
|
-group <name>
|
Specifies the new group name. |
odbc
| Command | Description |
|---|---|
| dicfg add odbc_table | Adds a new ODBC table to the DiveLine ODBC registry. |
| -catalog <name> | Sets the catalog name for the new table to be stored under. Defaults to master. |
| -schema <name> | Sets the schema name for the new table to be stored under. Defaults to public. |
| -table <name> | Sets the name for the new table. |
| -project <project> | Specifies the DiveLine project that contains the data source to be linked to the new table. |
| -path <path> | Specifies the file path of the data source to be linked to the new table. |
oidc
| Command | Description |
|---|---|
| dicfg add oidc | Adds a new OIDC identity provider. |
| -name <name> | Sets the name of the OIDC identity provider. Required. |
| -issuer <url> | Sets the name of the OIDC issuer. Required. |
| -client_id <id> | Sets the client ID token supplied by the identity provider. Required. |
| -drop_domain <TRUE | FALSE> | When set to TRUE, any username formatted as [email protected] has the domain.com portion removed before looking for a matching user in the DiveLine user list. |
| -domains <domain>, <domain>, ... | Sets a comma-separated list of which domains are used with the given Issuer and Client ID combination. |
| -username_claim <attribute> | Sets names that might contain a DiveLine username as a value. This field accepts a comma-separated list for multiple potential names. This field accepts array notation. For example, given an array of usernames named users, providing users[0] returns the first element in the users array. |
| -scopes <scope-list> | Sets a comma-seaprated list of values that, when sent to an Identity Provider, determines what, if any, additional information needs to be sent back to assist in authorization. |
| -client_secret <secret> | Sets a unique string of information only shared by the Identity Provider and DiveLine. Specific to OIDC implementations that use Google as an Identity Provider. |
| -discovery_endpoint <string> | Sets the Identity Provider's discovery URI. |
| -authorization_endpoint <string> | Sets the Identity Provider's authorization URI. |
| -token_endpoint <string> | Sets the Identity Provider's token URI. |
| -metadata_uri <string> | Sets the Identity Provider's metadata URI. |
| -jwks_uri <url> | Sets the Identity Provider's JWKS URL. |
| -webapp_response_ mode <string> | Sets the mode used when returning the OIDC response and parameters. The only available value is currently query. |
user
| Command | Description |
|---|---|
| dicfg add user | Adds a new DiveLine user. |
|
-user <name>
|
Specifies the new user name. |
|
-password <string>
|
Specifies the user's DiveLine password. Applies to authentication type OWN only. |
|
-encrypt_password <string>
|
Specifies the user's encrypted DiveLine password. Applies to authentication type OWN only. |
|
-administrator <TRUE | FALSE>
|
When set to TRUE, specifies that the user is a DiveLine administrator. |
|
-hide_username <TRUE | FALSE>
|
When set to TRUE, hides the user’s login information from view in the ProDiver status bar. |
|
-groups <name>, <name>,...
|
Assigns the user to a group or set of groups. |
|
-change_password_flag <TRUE | FALSE>
|
When set to TRUE, allows the user to change their password in ProDiver or DivePort. Applies to authentication type OWN only. |
|
-licensing <string>
|
Sets the licensing level for the user. Available categories for Diver Platform are any of the user categories listed in your license, such as: Developer, ProDiver, DivePort, and DiveTab. If a user belongs to more than one category, use a comma-delimited list to set all the values. Available categories for Diver Solution are Casual, General, Advanced, and Developer. If none specified, defaults to Advanced. |
|
-auth_override <OWN | LDAP>
|
Re-sets the authentication for the user. |
|
-email <address>
|
Sets the e-mail address for the user. |
|
-fullname <name>
|
Sets the full name for the user. |
The following example add command connects to a remote server and adds a user and password, specifies that the user is an administrator, and assigns the user to two groups:
dicfg -remote admin:admin@localhost:6401 add user -user paulie -password startpass -administrator true -groups "finance, fis"