Configure LCAM rules

LCAM rules have the following structure:

global:
  lcam:
    rules:
      - groupName: "Smartfacts Users"
        claim: "email"
        value:
          - "@"
        groupLicence:
          - "LIC_SMARTFACTS_USER"
        accountName: "Smartfacts Account"
      - groupName: "Account Administrators"
        claim: "email"
        value:
          - "account.administrator@your.domain"
        groupLicence:
          - "LIC_SMARTFACTS_USER"
        accountName: "Smartfacts Account"

Each entry defines a group in Smartfacts. In Smartfacts you can assign different roles and privileges to these groups.
For each group, a claim and one or more values must be stated.
Users are added when at least one of the stated values is part of the token claim value for the user.
The claim can be any claim in the token.
If you want to refer to a claim in the user info request, then write
- claim: "[userinfo]:<claimName>"
It is possible to state the same group multiple times with different claims.
As soon as at least one claim matches for a user, this user is assigned to the group.
The account name is always "Smartfacts Account".
The group license is always "LIC_SMARTFACTS_USER".
The value of the property “groupName” is used to create the corresponding group in Smartfacts.

Once the group rules have been defined, the values for the group rules can be adjusted in the Smartfacts UI (Starting 2024.09.4)

To do this, open the “Modelwarehouse Preferences”, navigate to the “TECHNICAL USER” and switch to the second tab “CONFIGURATION”.

Enter the values for the groups there:
[
{ “groupName”: <NameOfGroup”,
“values“: [”value1”, ‘value2’, ‘valuen’]
},{ “groupName2”: <NameOfGroup”,
“values“: [”value1”, ‘value2’, ‘valuen’]
}
]

Use the same value group which is defined in the group rules.
e.g email adresses

e.g.