Add the moon_orchestrator element.

Change-Id: I09712c0b6e8e7d17a765829a981280ca5fd8af75
author: asteroide <thomas.duval@orange.com> 2017-04-24 11:37:15 +0200
committer: asteroide <thomas.duval@orange.com> 2017-04-24 11:37:15 +0200
commit: d285ffba7b9e2af55cf7765963764d2acd616a24 (patch)
tree: cc9d0daa466ac99e95bed4c8ccf603068bceb6bb /moonv4/moon_orchestrator/conf/policies/policy_authz/scope.json
parent: d182202fc6001983541504ed323d68479086317e (diff)
1 files changed, 49 insertions, 0 deletions
diff --git a/moonv4/moon_orchestrator/conf/policies/policy_authz/scope.json b/moonv4/moon_orchestrator/conf/policies/policy_authz/scope.json
new file mode 100644
index 00000000..9b313daf
--- /dev/null
+++ b/moonv4/moon_orchestrator/conf/policies/policy_authz/scope.json
@@ -0,0 +1,49 @@
+{
+  "subject_scopes": {
+    "role": [
+      "admin",
+      "dev"
+    ],
+    "subject_security_level": [
+      "high",
+      "medium",
+      "low"
+    ],
+    "domain": [
+      "ft",
+      "xx"
+    ]
+  },
+
+  "action_scopes": {
+    "resource_action": [
+      "vm_admin",
+      "vm_access",
+      "storage_admin",
+      "storage_access"
+    ],
+    "access": [
+      "write",
+      "read"
+    ]
+  },
+
+  "object_scopes": {
+    "object_security_level": [
+      "high",
+      "medium",
+      "low"
+      ],
+    "type": [
+      "computing",
+      "storage"
+    ],
+    "object_id": [
+      "servers",
+      "vm1",
+      "vm2",
+      "file1",
+      "file2"
+    ]
+  }
+}
author	asteroide <thomas.duval@orange.com>	2017-04-24 11:37:15 +0200
committer	asteroide <thomas.duval@orange.com>	2017-04-24 11:37:15 +0200
commit	d285ffba7b9e2af55cf7765963764d2acd616a24 (patch)
tree	cc9d0daa466ac99e95bed4c8ccf603068bceb6bb /moonv4/moon_orchestrator/conf/policies/policy_authz/scope.json
parent	d182202fc6001983541504ed323d68479086317e (diff)