• Home
• com.googlecode.redbox-mint
• fcrepo-client
• 2.2.4
• source code
• permit-if-owner.xml

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

xacml-policies.examples.example-repository-policies.permit-if-owner.xml Maven / Gradle / Ivy

<?xml version="1.0" encoding="UTF-8"?>
<Policy xmlns="urn:oasis:names:tc:xacml:1.0:policy"
        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
        PolicyId="permit-if-owner"
        RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:first-applicable">
  <Description>
    If the logged-in user is the owner of an object, permit all actions.
    Note: This policy also works if the object has multiple owners and 
    the logged-in user is one of them.
  </Description>
  <Target>
    <Subjects>
      <AnySubject/>
    </Subjects>
    <Resources>     
      <AnyResource/>
    </Resources>
    <Actions>
      <AnyAction/>
    </Actions>    
  </Target>
  <Rule RuleId="1" Effect="Permit">
    <Condition FunctionId="urn:oasis:names:tc:xacml:1.0:function:string-at-least-one-member-of">
      <SubjectAttributeDesignator AttributeId="urn:fedora:names:fedora:2.1:subject:loginId" DataType="http://www.w3.org/2001/XMLSchema#string"
        MustBePresent="false"/>
      <ResourceAttributeDesignator AttributeId="urn:fedora:names:fedora:2.1:resource:object:owner" DataType="http://www.w3.org/2001/XMLSchema#string"
        MustBePresent="false"/>
    </Condition>
  </Rule>
</Policy>