diff options
author | Endi Sukma Dewata <edewata@redhat.com> | 2013-02-01 13:05:38 -0500 |
---|---|---|
committer | Endi Sukma Dewata <edewata@redhat.com> | 2013-02-18 14:15:58 -0500 |
commit | ba75a144f4c57c0e804fdd6e86eaae40e5822b14 (patch) | |
tree | 8e6f482f02a68171b3b49c84dffcb9634fb540ce /base/ca/shared/webapps/ca/WEB-INF/acl.properties | |
parent | db56da6d015d4fc040d73277c68fea590c5929b7 (diff) | |
download | pki-ticket-477-6.tar.gz pki-ticket-477-6.tar.xz pki-ticket-477-6.zip |
Added configuration file for authentication method validation.ticket-477-6
The auth.properties have been converted into a configuration file to store the
list of allowed authentication methods for each REST method.
The old auth.properties have been renamed to acl.properties since it's used to
store ACL mappings.
Ticket #510
Diffstat (limited to 'base/ca/shared/webapps/ca/WEB-INF/acl.properties')
-rw-r--r-- | base/ca/shared/webapps/ca/WEB-INF/acl.properties | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/base/ca/shared/webapps/ca/WEB-INF/acl.properties b/base/ca/shared/webapps/ca/WEB-INF/acl.properties new file mode 100644 index 000000000..20f3dd864 --- /dev/null +++ b/base/ca/shared/webapps/ca/WEB-INF/acl.properties @@ -0,0 +1,14 @@ +# Restful API authorization mapping info +# +# Format: +# <mapping name> = <resource ID>,<operation> +# ex: admin.users = certServer.ca.users,read + +account.login = certServer.ca.account,login +account.logout = certServer.ca.account,logout +admin.users = certServer.ca.users,execute +admin.groups = certServer.ca.groups,execute +admin.kraconnector = certServer.ca.connectorInfo,modify +agent.certrequests = certServer.ca.certrequests,execute +agent.certs = certServer.ca.certs,execute +securityDomain.installToken = certServer.securitydomain.domainxml,read |