1 files changed, 38 insertions, 0 deletions

diff --git a/aa-local.yaml b/aa-local.yaml
new file mode 100644
index 0000000..593ba56
--- /dev/null
+++ b/aa-local.yaml
@@ -0,0 +1,38 @@
+# OpenSSO Authorization
+# set ":server: " to disable A&A
+:authorization:
+  :server: AA
+  :free_request: #request-method not controlled by A&A
+    - "GET"
+    - "POST"
+    - "HEAD"
+    - "DELETE"
+    - "PUT"
+  :authenticate_request: #only for authenticated user
+    - ""
+  :authorize_request:  #only for authenticated and authorizeduser
+    - ""
+# Exceptions:
+  :free_uris: #request-method for uri not controlled by A&A
+    ? - :GET
+    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/algorithm/
+      - "http://SERVERNAME/model"
+      - "http://SERVERNAME/validation"
+      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/validation\/[a-z,A-Z,\/,_\-]*$/
+    ? - :GET
+      - :POST
+    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/toxcreate/
+      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/task/
+      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/compound/
+
+    ? - :PUT
+    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/task/
+
+  :authorize_exceptions: #request-method for uri only authenticated, no authorization
+    ? - :POST
+    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/algorithm/
+      - "http://SERVERNAME/dataset"
+      - "http://SERVERNAME/model"
+      - "http://SERVERNAME/validation"
+      - !ruby/regexp /http\:\/\/ESCAPEDSERVERNAME\/validation\/[a-z,A-Z,\/,_\-]*$/
+