diff options
Diffstat (limited to 'keystone-moon/examples/moon/policies/policy_admin/perimeter.json')
-rw-r--r-- | keystone-moon/examples/moon/policies/policy_admin/perimeter.json | 53 |
1 files changed, 32 insertions, 21 deletions
diff --git a/keystone-moon/examples/moon/policies/policy_admin/perimeter.json b/keystone-moon/examples/moon/policies/policy_admin/perimeter.json index 7716986d..a796dae9 100644 --- a/keystone-moon/examples/moon/policies/policy_admin/perimeter.json +++ b/keystone-moon/examples/moon/policies/policy_admin/perimeter.json @@ -1,30 +1,41 @@ { "subjects": [ - "admin", - "demo" + "admin" ], "actions": [ "read", - "write", - "create", - "delete" + "write" ], "objects": [ - "subjects", - "objects", - "actions", - "subject_categories", - "object_categories", - "action_categories", - "subject_category_scope", - "object_category_scope", - "action_category_scope", - "rules", - "subject_assignments", - "object_assignments", - "action_assignments", - "sub_meta_rule_algorithm", - "aggregation_algorithm", - "sub_meta_rules" + "authz.subjects", + "authz.objects", + "authz.actions", + "authz.subject_categories", + "authz.object_categories", + "authz.action_categories", + "authz.subject_category_scopes", + "authz.object_category_scopes", + "authz.action_category_scopes", + "authz.subject_assignments", + "authz.object_assignments", + "authz.action_assignments", + "authz.aggregation_algorithm", + "authz.sub_meta_rules", + "authz.rules", + "admin.subjects", + "admin.objects", + "admin.actions", + "admin.subject_categories", + "admin.object_categories", + "admin.action_categories", + "admin.subject_category_scopes", + "admin.object_category_scopes", + "admin.action_category_scopes", + "admin.subject_assignments", + "admin.object_assignments", + "admin.action_assignments", + "admin.aggregation_algorithm", + "admin.sub_meta_rules", + "admin.rules" ] } |