[jboss-cvs] JBossAS SVN: r71810 - in projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security: xacml and 17 other directories.
jboss-cvs-commits at lists.jboss.org
jboss-cvs-commits at lists.jboss.org
Tue Apr 8 19:00:06 EDT 2008
Author: mmoyses
Date: 2008-04-08 19:00:05 -0400 (Tue, 08 Apr 2008)
New Revision: 71810
Added:
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/basicConfig.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/description.txt
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/response.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/policy.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/request.xml
projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/response.xml
Log:
JBAS-5372
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/basicConfig.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/basicConfig.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/basicConfig.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,18 @@
+<config xmlns='http://sunxacml.sourceforge.net/schema/config-0.2'
+ defaultPDP='default' defaultAttributeFactory='default'
+ defaultCombiningAlgFactory='default' defaultFunctionFactory='default'>
+
+ <pdp name='default'>
+ <attributeFinderModule
+ class='org.jboss.security.xacml.sunxacml.finder.impl.CurrentEnvModule'/>
+ <attributeFinderModule
+ class='org.jboss.security.xacml.sunxacml.finder.impl.SelectorModule'/>
+ <attributeFinderModule
+ class='org.jboss.test.security.test.xacml.modules.TestRoleAttributeFinderModule'/>
+ <resourceFinderModule
+ class='org.jboss.test.security.test.xacml.modules.TestResourceFinderModule'/>
+ </pdp>
+ <attributeFactory name='default' useStandardDatatypes='true'/>
+ <combiningAlgFactory name='default' useStandardAlgorithms='true'/>
+ <functionFactory name='default' useStandardFunctions='true'/>
+</config>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/description.txt
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/description.txt (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/description.txt 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,42 @@
+//$Id: description.txt 45725 2006-06-21 17:19:15Z asaldhana $
+
+The Tests in the XACML suite
+=============================
+test1:Anil Saldhana can read or write Anil Saldhana's payroll personal information.
+
+test2: A subject with a role attribute of "Developer" can read or write development report.
+
+test3: A subject with a "bogus" attribute with a value of "Developer" can read or write Development Reports.
+
+test4: Anil Saldhana can read or write Development Reports. Syntax for the SubjectAttributeDesignator omits the
+required AttributeId xml attribute, however.
+
+test5: Anil Saldhana can read or write development reports. The associated Request for this test omits the
+required AttributeId for the Action attribute, however.
+
+test6: Anil Saldhana can read or write development reports.
+
+test7: Anil Saldhana can read or write development reports. (Missing Attribute)
+
+test8: Anil Saldhana can read or write development reports. (Presence of some attribute)
+
+test9: Anyone who is 30 integer years old may perform any action on any resource.
+
+test10: Anyone can perform any action on any resource if current-time is 08:23:47-05:00.
+
+test11: Any Subject can perform any action on any resource.
+
+test12: Any Subject can read any resource or can write any resource with "platinum" Quality of Service.
+
+test13: Anil Saldhana, identified by X500 Name, can read or write development reports.
+
+test14: Anyone can access any resource between 9AM and 5PM
+
+test15: Anyone can access any resource between 9AM and 5PM (Request comes at 2AM)
+
+test16: Anil Saldhana can read or write Anil Saldhana's payroll personal information when
+ the request parameter "status" in Action has a value "employed"
+
+test17: Anil Saldhana can read or write Anil Saldhana's payroll personal information when
+ the request parameter "status" in Action has a value "employed" (request param is missing)
+
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:conformance-test:I:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test I.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:conformance-test:I:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write Anil Saldhana's payroll personal information.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test1/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:X:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test X.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:X:rule"
+ Effect="Permit">
+ <Description>
+ Anyone can perform any action on any resource if current-time
+ is 08:23:47-05:00.
+ </Description>
+ <Condition>
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-one-and-only">
+ <EnvironmentAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time"/>
+ </Apply>
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#time">08:23:47-05:00</AttributeValue>
+ </Apply>
+ </Condition>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time">
+ <AttributeValue>08:23:47-05:00</AttributeValue>
+ </Attribute>
+ </Environment>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test10/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XI:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Any Subject can perform any action on any resource.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XI:rule"
+ Effect="Permit">
+ <Description>
+ Always return Permit.
+ </Description>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test11/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XII:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test XII.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XII:rule"
+ Effect="Permit">
+ <Description>
+ Any Subject can read any resource or can write any
+ resource with "platinum" Quality of Service.
+ </Description>
+ <Target>
+
+
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">platinum</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:attribute:qos"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,34 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>write</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:attribute:qos"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>platinum</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test12/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,70 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XIII:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test XIII.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XIII:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana, identified by X500 Name, can read or
+ write development reports.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:x500Name-equal">
+ <AttributeValue
+ DataType="urn:oasis:names:tc:xacml:1.0:data-type:x500Name">CN=Anil Saldhana,O=JBoss Inc,C=US</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="urn:oasis:names:tc:xacml:1.0:data-type:x500Name"
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="urn:oasis:names:tc:xacml:1.0:data-type:x500Name">
+ <AttributeValue>cn=Anil Saldhana, o=JBoss Inc, c=US</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action><Environment/></Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test13/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XIV:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test XIV.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XIV:rule"
+ Effect="Permit">
+ <Description>
+ Anyone can perform any action on any resource if current-time
+ is between 9am and 5pm
+ </Description>
+ <Condition FunctionId="urn:oasis:names:tc:xacml:1.0:function:and">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-greater-than-or-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-one-and-only">
+ <EnvironmentAttributeDesignator DataType="http://www.w3.org/2001/XMLSchema#time" AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time" />
+ </Apply>
+ <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#time">09:00:00</AttributeValue>
+ </Apply>
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-less-than-or-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-one-and-only">
+ <EnvironmentAttributeDesignator DataType="http://www.w3.org/2001/XMLSchema#time" AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time" />
+ </Apply>
+ <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#time">17:00:00</AttributeValue>
+ </Apply>
+ </Condition>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time">
+ <AttributeValue>09:23:47-05:00</AttributeValue>
+ </Attribute>
+ </Environment>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test14/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XV:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test XV.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XV:rule"
+ Effect="Permit">
+ <Description>
+ Anyone can perform any action on any resource if current-time
+ is between 9am and 5pm. (Request comes at 2AM)
+ </Description>
+ <Condition FunctionId="urn:oasis:names:tc:xacml:1.0:function:and">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-greater-than-or-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-one-and-only">
+ <EnvironmentAttributeDesignator DataType="http://www.w3.org/2001/XMLSchema#time" AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time" />
+ </Apply>
+ <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#time">09:00:00</AttributeValue>
+ </Apply>
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-less-than-or-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:time-one-and-only">
+ <EnvironmentAttributeDesignator DataType="http://www.w3.org/2001/XMLSchema#time" AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time" />
+ </Apply>
+ <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#time">17:00:00</AttributeValue>
+ </Apply>
+ </Condition>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time">
+ <AttributeValue>02:23:47-05:00</AttributeValue>
+ </Attribute>
+ </Environment>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test15/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>NotApplicable</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,80 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XV:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description> Policy for Test XVII. </Description>
+ <Target/>
+ <Rule RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XVI:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write Anil Saldhana's payroll personal
+ information when the request parameter "status" in Action has a
+ value "employed"
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ <ActionMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">employed</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:request-param:attribute:status"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ <ActionMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">employed</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:request-param:attribute:status"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:request-param:attribute:status"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>employed</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment>
+ <Attribute
+ AttributeId="urn:jboss:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time">
+ <AttributeValue>02:23:47-05:00</AttributeValue>
+ </Attribute>
+ </Environment>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test16/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,80 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:XV:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description> Policy for Test XVII. </Description>
+ <Target/>
+ <Rule RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:XVII:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write Anil Saldhana's payroll personal
+ information when the request parameter "status" in Action has a
+ value "employed" (request param is missing)
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ <ActionMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">employed</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:request-param:attribute:status"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ <ActionMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">employed</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:request-param:attribute:status"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developers/payroll/anilsaldhana</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment>
+ <Attribute
+ AttributeId="urn:jboss:names:tc:xacml:1.0:environment:current-time"
+ DataType="http://www.w3.org/2001/XMLSchema#time">
+ <AttributeValue>02:23:47-05:00</AttributeValue>
+ </Attribute>
+ </Environment>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test17/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>NotApplicable</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,69 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:conformance-test:II:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test II.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:test:II:rule"
+ Effect="Permit">
+ <Description>
+ A subject with a role attribute of "Developer" can read or
+ write development report.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Developer</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:example:attribute:role"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test2/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,69 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:III:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test III.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:III:rule"
+ Effect="Permit">
+ <Description>
+ A subject with a "bogus" attribute with a value of
+ "Developer" can read or write Development Reports.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Developer</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:attribute:bogus"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test3/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>NotApplicable</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,71 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:IV:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test IV
+ This policy contains INTENTIONAL syntax error in SubjectAttributeDesigntor,
+ AttributeIt attribute is omitted.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:IV:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write Development Reports.
+ Syntax for the SubjectAttributeDesignator omits
+ the required AttributeId xml attribute, however.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test4/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Indeterminate</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:syntax-error"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,70 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:V:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test V.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:V:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write development reports.
+ The associated Request for this test omits the
+ required AttributeId for the Action attribute, however.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- AttributeId of action is INTENTIONALLY omitted -->
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <!-- AttributeId of action is INTENTIONALLY omitted -->
+ <Attribute
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test5/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Indeterminate</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:syntax-error"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,79 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:VI:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test VI.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:VI:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write development reports.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">dummy attribute</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:some-attribute"
+ MustBePresent="true"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,34 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:some-attribute"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>dummy attribute</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test6/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,79 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:VII:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test VII.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:VII:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write development reports.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">dummy attribute</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:some-attribute"
+ MustBePresent="true"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test7/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Indeterminate</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:missing-attribute"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,81 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:VIII:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test VIII.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:VIII:rule"
+ Effect="Permit">
+ <Description>
+ Anil Saldhana can read or write development reports.
+ </Description>
+ <Target>
+ <Subjects>
+ <Subject>
+ <SubjectMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">Anil Saldhana</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </SubjectMatch>
+ </Subject>
+ </Subjects>
+ <Resources>
+ <Resource>
+ <ResourceMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:anyURI-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">http://jboss.com/developmentreports/</AttributeValue>
+ <ResourceAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI"/>
+ </ResourceMatch>
+ </Resource>
+ </Resources>
+ <Actions>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">read</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ <Action>
+ <ActionMatch
+ MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">write</AttributeValue>
+ <ActionAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </ActionMatch>
+ </Action>
+ </Actions>
+ </Target>
+
+ <Condition>
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:string-is-in">
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#string">dummy attribute</AttributeValue>
+ <SubjectAttributeDesignator
+ SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject"
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:some-attribute"
+ MustBePresent="true"
+ DataType="http://www.w3.org/2001/XMLSchema#string"/>
+ </Apply>
+ </Condition>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,34 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:some-attribute"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>dummy attribute</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test8/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/policy.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/policy.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/policy.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Policy
+ xmlns="urn:oasis:names:tc:xacml:2.0:policy:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os
+ access_control-xacml-2.0-policy-schema-os.xsd"
+ PolicyId="urn:oasis:names:tc:xacml:2.0:jboss-test:IX:policy"
+ RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides">
+ <Description>
+ Policy for Test IX.
+ </Description>
+ <Target/>
+ <Rule
+ RuleId="urn:oasis:names:tc:xacml:2.0:jboss-test:IX:rule"
+ Effect="Permit">
+ <Description>
+ Anyone who is 30 integer years old may perform any
+ action on any resource.
+ </Description>
+ <Condition>
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:integer-equal">
+ <Apply FunctionId="urn:oasis:names:tc:xacml:1.0:function:integer-one-and-only">
+ <SubjectAttributeDesignator
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:age"
+ DataType="http://www.w3.org/2001/XMLSchema#integer"/>
+ </Apply>
+ <AttributeValue
+ DataType="http://www.w3.org/2001/XMLSchema#integer">30</AttributeValue>
+ </Apply>
+ </Condition>
+ </Rule>
+</Policy>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/request.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/request.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/request.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,39 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Request
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Subject>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>Anil Saldhana</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:age"
+ DataType="http://www.w3.org/2001/XMLSchema#integer">
+ <AttributeValue>30</AttributeValue>
+ </Attribute>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:2.0:jboss-test:age"
+ DataType="http://www.w3.org/2001/XMLSchema#double">
+ <AttributeValue>45.3</AttributeValue>
+ </Attribute>
+ </Subject>
+ <Resource>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:resource:resource-id"
+ DataType="http://www.w3.org/2001/XMLSchema#anyURI">
+ <AttributeValue>http://jboss.com/developmentreports/</AttributeValue>
+ </Attribute>
+ </Resource>
+ <Action>
+ <Attribute
+ AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id"
+ DataType="http://www.w3.org/2001/XMLSchema#string">
+ <AttributeValue>read</AttributeValue>
+ </Attribute>
+ </Action>
+ <Environment/>
+</Request>
Added: projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/response.xml
===================================================================
--- projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/response.xml (rev 0)
+++ projects/security/security-xacml/trunk/jboss-xacml/src/tests/resources/security/xacml/test9/response.xml 2008-04-08 23:00:05 UTC (rev 71810)
@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Response
+ xmlns="urn:oasis:names:tc:xacml:2.0:context:schema:os"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:context:schema:os
+ access_control-xacml-2.0-context-schema-os.xsd">
+ <Result>
+ <Decision>Permit</Decision>
+ <Status>
+ <StatusCode
+ Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
+ </Status>
+ </Result>
+</Response>
+
More information about the jboss-cvs-commits
mailing list