A&A implementation

author: mr <mr@mrautenberg.de> 2010-12-09 10:46:13 +0100
committer: mr <mr@mrautenberg.de> 2010-12-09 10:46:13 +0100
commit: c4504c72ffb2920de65399a2dc0a2c29fe04a52d (patch)
tree: badc015e7f3f66ddd2f0fdef9d1e05d7d80a5341 /lib/templates
parent: bb99bb49636db1d3f07b6f540dc8624a677ade2f (diff)
2 files changed, 106 insertions, 0 deletions
diff --git a/lib/templates/default_guest_policy.xml b/lib/templates/default_guest_policy.xml
new file mode 100644
index 0000000..a778070
--- /dev/null
+++ b/lib/templates/default_guest_policy.xml
@@ -0,0 +1,53 @@
+<!DOCTYPE Policies PUBLIC "-//Sun Java System Access Manager7.1 2006Q3
+   Admin CLI DTD//EN" "jar://com/sun/identity/policy/policyAdmin.dtd">
+
+<Policies>
+<Policy name="policy_user" referralPolicy="false" active="true">
+   <Rule name="rule_user">
+      <ServiceName name="iPlanetAMWebAgentService" />
+      <ResourceName name="uri"/>
+      <AttributeValuePair>
+         <Attribute name="GET" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="POST" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="PUT" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="DELETE" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+   </Rule>
+   <Subjects name="subjects_user" description="">
+        <Subject name="subject_user" type="LDAPUsers" includeType="inclusive">
+            <AttributeValuePair>
+                <Attribute name="Values"/>
+                <Value>uid=guest,ou=people,dc=opentox,dc=org</Value>
+            </AttributeValuePair>
+        </Subject>
+   </Subjects>
+</Policy>
+<Policy name="policy_group" referralPolicy="false" active="true">
+   <Rule name="rule_group">
+      <ServiceName name="iPlanetAMWebAgentService" />
+      <ResourceName name="uri"/>
+      <AttributeValuePair>
+         <Attribute name="GET" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+   </Rule>
+   <Subjects name="subjects_group" description="">
+        <Subject name="subject_group" type="LDAPGroups" includeType="inclusive">
+            <AttributeValuePair>
+                <Attribute name="Values"/>
+                <Value>cn=member,ou=groups,dc=opentox,dc=org</Value>
+            </AttributeValuePair>
+        </Subject>
+   </Subjects>
+</Policy>
+</Policies>
diff --git a/lib/templates/default_policy.xml b/lib/templates/default_policy.xml
new file mode 100644
index 0000000..a778070
--- /dev/null
+++ b/lib/templates/default_policy.xml
@@ -0,0 +1,53 @@
+<!DOCTYPE Policies PUBLIC "-//Sun Java System Access Manager7.1 2006Q3
+   Admin CLI DTD//EN" "jar://com/sun/identity/policy/policyAdmin.dtd">
+
+<Policies>
+<Policy name="policy_user" referralPolicy="false" active="true">
+   <Rule name="rule_user">
+      <ServiceName name="iPlanetAMWebAgentService" />
+      <ResourceName name="uri"/>
+      <AttributeValuePair>
+         <Attribute name="GET" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="POST" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="PUT" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+      <AttributeValuePair>
+         <Attribute name="DELETE" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+   </Rule>
+   <Subjects name="subjects_user" description="">
+        <Subject name="subject_user" type="LDAPUsers" includeType="inclusive">
+            <AttributeValuePair>
+                <Attribute name="Values"/>
+                <Value>uid=guest,ou=people,dc=opentox,dc=org</Value>
+            </AttributeValuePair>
+        </Subject>
+   </Subjects>
+</Policy>
+<Policy name="policy_group" referralPolicy="false" active="true">
+   <Rule name="rule_group">
+      <ServiceName name="iPlanetAMWebAgentService" />
+      <ResourceName name="uri"/>
+      <AttributeValuePair>
+         <Attribute name="GET" />
+         <Value>allow</Value>
+      </AttributeValuePair>
+   </Rule>
+   <Subjects name="subjects_group" description="">
+        <Subject name="subject_group" type="LDAPGroups" includeType="inclusive">
+            <AttributeValuePair>
+                <Attribute name="Values"/>
+                <Value>cn=member,ou=groups,dc=opentox,dc=org</Value>
+            </AttributeValuePair>
+        </Subject>
+   </Subjects>
+</Policy>
+</Policies>
author	mr <mr@mrautenberg.de>	2010-12-09 10:46:13 +0100
committer	mr <mr@mrautenberg.de>	2010-12-09 10:46:13 +0100
commit	c4504c72ffb2920de65399a2dc0a2c29fe04a52d (patch)
tree	badc015e7f3f66ddd2f0fdef9d1e05d7d80a5341 /lib/templates
parent	bb99bb49636db1d3f07b6f540dc8624a677ade2f (diff)