source: TI12-security/trunk/ndg_xacml/ndg/xacml/test/rule1.xml @ 7064

Subversion URL: http://proj.badc.rl.ac.uk/svn/ndg/TI12-security/trunk/ndg_xacml/ndg/xacml/test/rule1.xml@7666
Revision 7064, 1.4 KB checked in by pjkersha, 10 years ago (diff)

Incomplete - task 2: XACML-Security Integration

  • added and and function and placeholders fro xpath-node-* functions
  • Property svn:keywords set to Id
Line 
1<?xml version="1.0" encoding="UTF-8"?>
2<Policy xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os" 
3    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
4    xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os http://docs.oasis-open.org/xacml/access_control-xacml-2.0-policy-schema-os.xsd" 
5    PolicyId="urn:oasis:names:tc:example:SimplePolicy1" 
6    RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
7    <Description>
8        Med Example Corp access control policy
9    </Description>
10    <Target/>
11    <Rule RuleId="urn:oasis:names:tc:xacml:2.0:example:SimpleRule1" Effect="Permit">
12        <Description>
13            Any subject with an e-mail name in the med.example.com domain
14            can perform any action on any resource.
15        </Description>
16        <Target>
17            <Subjects>
18                <Subject>
19                    <SubjectMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:rfc822Name-match">
20                        <AttributeValue DataType="urn:oasis:names:tc:xacml:1.0:data-type:rfc822Name">
21                            med.example.com
22                        </AttributeValue>
23                        <SubjectAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id" DataType="urn:oasis:names:tc:xacml:1.0:data-type:rfc822Name"/>
24                    </SubjectMatch>
25                </Subject>
26            </Subjects>
27        </Target>
28    </Rule>
29</Policy>
Note: See TracBrowser for help on using the repository browser.