# OpenSSO Authorization
# set ":server: " to disable A&A
:authorization:
  :server: AA
  :free_request: #request-method not controlled by A&A
    - "GET"
    - "POST"
    - "HEAD"
    - "DELETE"
    - "PUT"
  :authenticate_request: #only for authenticated user
    - ""
  :authorize_request:  #only for authenticated and authorizeduser
    - ""
# Exceptions:
  :free_uris: #request-method for uri not controlled by A&A
    ? - :GET
    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/algorithm/
      - "http://SERVERNAME/model"
      - "http://SERVERNAME/validation"
      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/validation\/[a-z,A-Z,\/,_\-]*$/
    ? - :GET
      - :POST
    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/toxcreate/
      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/task/
      - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/compound/

    ? - :PUT
    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/task/

  :authorize_exceptions: #request-method for uri only authenticated, no authorization
    ? - :POST
    : - !ruby/regexp /http:\/\/ESCAPEDSERVERNAME\/algorithm/
      - "http://SERVERNAME/dataset"
      - "http://SERVERNAME/model"
      - "http://SERVERNAME/validation"
      - !ruby/regexp /http\:\/\/ESCAPEDSERVERNAME\/validation\/[a-z,A-Z,\/,_\-]*$/