Home Explore Help
Register Sign In
zhuhongbin
/
TMRWatchComm
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
TMRWatchComm
/
conf
/
rbac_model.conf

rbac_model.conf 349 B
Permalink History Raw

123456789101112131415161718 
  1. [request_definition]
    2. 

  2. r = sub, obj, act
    3. 

  3. 

  4. [policy_definition]
    5. 

  5. p = sub, obj, act
    6. 

  6. 

  7. [role_definition]
    8. 

  8. g = _, _
    9. 

  9. 

  10. [policy_effect]
    11. 

  11. e = some(where (p.eft == allow))
    12. 

  12. 

  13. [matchers]
    14. 

  14. m = g(r.sub, p.sub) == true \
    15. 

  15.     && keyMatch2(r.obj, p.obj) == true \
    16. 

  16.     && regexMatch(r.act, p.act) == true \
    17. 

  17.     || r.sub == "admin" \
    18. 

  18.     || keyMatch2(r.obj, "/auth") == true \
    19.