diff options
Diffstat (limited to 'keystone-moon/examples/moon/policies/policy_rbac_authz/assignment.json')
-rw-r--r-- | keystone-moon/examples/moon/policies/policy_rbac_authz/assignment.json | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/keystone-moon/examples/moon/policies/policy_rbac_authz/assignment.json b/keystone-moon/examples/moon/policies/policy_rbac_authz/assignment.json new file mode 100644 index 00000000..e804b56a --- /dev/null +++ b/keystone-moon/examples/moon/policies/policy_rbac_authz/assignment.json @@ -0,0 +1,28 @@ +{ + "subject_assignments": { + "role":{ + "admin": ["admin" ] + } + }, + + "action_assignments": { + "computing_action":{ + "pause": ["vm_admin"], + "unpause": ["vm_admin"], + "start": ["vm_admin"], + "stop": ["vm_admin"], + "list": ["vm_access", "vm_admin"], + "create": ["vm_admin"] + }, + "storage_action":{ + "get": ["vm_access"], + "set": ["vm_access", "vm_admin"] + } + }, + + "object_assignments": { + "id": { + "servers": ["servers"] + } + } +} |