From ba75a144f4c57c0e804fdd6e86eaae40e5822b14 Mon Sep 17 00:00:00 2001 From: Endi Sukma Dewata Date: Fri, 1 Feb 2013 13:05:38 -0500 Subject: Added configuration file for authentication method validation. The auth.properties have been converted into a configuration file to store the list of allowed authentication methods for each REST method. The old auth.properties have been renamed to acl.properties since it's used to store ACL mappings. Ticket #510 --- base/ocsp/shared/webapps/ocsp/WEB-INF/acl.properties | 10 ++++++++++ base/ocsp/shared/webapps/ocsp/WEB-INF/auth-method.properties | 9 +++++++++ base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties | 10 ---------- 3 files changed, 19 insertions(+), 10 deletions(-) create mode 100644 base/ocsp/shared/webapps/ocsp/WEB-INF/acl.properties create mode 100644 base/ocsp/shared/webapps/ocsp/WEB-INF/auth-method.properties delete mode 100644 base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties (limited to 'base/ocsp') diff --git a/base/ocsp/shared/webapps/ocsp/WEB-INF/acl.properties b/base/ocsp/shared/webapps/ocsp/WEB-INF/acl.properties new file mode 100644 index 000000000..95fabba72 --- /dev/null +++ b/base/ocsp/shared/webapps/ocsp/WEB-INF/acl.properties @@ -0,0 +1,10 @@ +# Restful API authorization mapping info +# +# Format: +# = , +# ex: admin.users = certServer.ca.users,read + +account.login = certServer.ocsp.account,login +account.logout = certServer.ocsp.account,logout +admin.users = certServer.ocsp.users,execute +admin.groups = certServer.ocsp.groups,execute diff --git a/base/ocsp/shared/webapps/ocsp/WEB-INF/auth-method.properties b/base/ocsp/shared/webapps/ocsp/WEB-INF/auth-method.properties new file mode 100644 index 000000000..81e24403f --- /dev/null +++ b/base/ocsp/shared/webapps/ocsp/WEB-INF/auth-method.properties @@ -0,0 +1,9 @@ +# Restful API auth mapping info +# +# Format: +# = +# ex: admin.users = certUserDBAuthMgr,passwdUserDBAuthMgr + +default = * +account = certUserDBAuthMgr,passwdUserDBAuthMgr +admin = certUserDBAuthMgr diff --git a/base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties b/base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties deleted file mode 100644 index 95fabba72..000000000 --- a/base/ocsp/shared/webapps/ocsp/WEB-INF/auth.properties +++ /dev/null @@ -1,10 +0,0 @@ -# Restful API authorization mapping info -# -# Format: -# = , -# ex: admin.users = certServer.ca.users,read - -account.login = certServer.ocsp.account,login -account.logout = certServer.ocsp.account,logout -admin.users = certServer.ocsp.users,execute -admin.groups = certServer.ocsp.groups,execute -- cgit