From d285ffba7b9e2af55cf7765963764d2acd616a24 Mon Sep 17 00:00:00 2001 From: asteroide Date: Mon, 24 Apr 2017 11:37:15 +0200 Subject: Add the moon_orchestrator element. Change-Id: I09712c0b6e8e7d17a765829a981280ca5fd8af75 --- .../conf/policies/policy_authz/rule.json | 25 ++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 moonv4/moon_orchestrator/conf/policies/policy_authz/rule.json (limited to 'moonv4/moon_orchestrator/conf/policies/policy_authz/rule.json') diff --git a/moonv4/moon_orchestrator/conf/policies/policy_authz/rule.json b/moonv4/moon_orchestrator/conf/policies/policy_authz/rule.json new file mode 100644 index 00000000..25f9d93a --- /dev/null +++ b/moonv4/moon_orchestrator/conf/policies/policy_authz/rule.json @@ -0,0 +1,25 @@ +{ + "mls_rule":[ + ["high", "vm_admin", "medium"], + ["high", "vm_admin", "low"], + ["medium", "vm_admin", "low"], + ["high", "vm_access", "high"], + ["high", "vm_access", "medium"], + ["high", "vm_access", "low"], + ["medium", "vm_access", "medium"], + ["medium", "vm_access", "low"], + ["low", "vm_access", "low"] + ], + "dte_rule":[ + ["ft", "read", "computing"], + ["ft", "write", "computing"], + ["ft", "read", "storage"], + ["ft", "write", "storage"], + ["xx", "read", "storage"] + ], + "rbac_rule":[ + ["dev", "xx", "read", "servers"], + ["admin", "xx", "read", "servers"], + ["admin", "ft", "read", "servers"] + ] +} -- cgit 1.2.3-korg