[Project] Updated roles und users
This commit is contained in:
parent
8c5804fcbe
commit
224346cd43
|
@ -1,52 +1,5 @@
|
||||||
<?xml version="1.0" encoding="UTF-8"?>
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role name="agent">
|
|
||||||
<Privilege name="li.strolch.privilege.handler.SystemAction" policy="DefaultPrivilege">
|
|
||||||
<Allow>li.strolch.runtime.privilege.StrolchSystemAction</Allow>
|
|
||||||
<Allow>li.strolch.runtime.privilege.StrolchSystemActionWithResult</Allow>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
|
||||||
<Allow>PersistSessions</Allow>
|
|
||||||
<Allow>GetCertificates</Allow>
|
|
||||||
</Privilege>
|
|
||||||
|
|
||||||
<Privilege name="GetResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="GetOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="GetActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
</Role>
|
|
||||||
|
|
||||||
<Role name="AppUser">
|
<Role name="AppUser">
|
||||||
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
||||||
|
@ -61,19 +14,15 @@
|
||||||
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
<Privilege name="GetResource" policy="ModelPrivilege">
|
<!--
|
||||||
<AllAllowed>true</AllAllowed>
|
Internal
|
||||||
</Privilege>
|
-->
|
||||||
|
<Role name="ModelAccessor">
|
||||||
<Privilege name="GetOrder" policy="ModelPrivilege">
|
<Privilege name="GetOrder" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="GetActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddOrder" policy="ModelPrivilege">
|
<Privilege name="AddOrder" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
|
@ -83,19 +32,28 @@
|
||||||
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
<Privilege name="GetActivity" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="GetResource" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
<Privilege name="AddResource" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
</Role>
|
</Role>
|
||||||
|
@ -130,60 +88,99 @@
|
||||||
</Privilege>
|
</Privilege>
|
||||||
</Role>
|
</Role>
|
||||||
|
|
||||||
<Role name="PrivilegeAdmin">
|
<Role name="UserPrivileges">
|
||||||
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege"/>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege"/>
|
||||||
</Privilege>
|
</Role>
|
||||||
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
<Role name="PrivilegeAdmin">
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="InvalidateSession" policy="UserSessionAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="InvalidateSession" policy="UserSessionAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<Allow>Reload</Allow>
|
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege">
|
||||||
<Allow>GetPolicies</Allow>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Allow>Persist</Allow>
|
</Privilege>
|
||||||
<Allow>GetCertificates</Allow>
|
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
||||||
<Allow>PersistSessions</Allow>
|
<Allow>Reload</Allow>
|
||||||
</Privilege>
|
<Allow>GetPolicies</Allow>
|
||||||
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
<Allow>Persist</Allow>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Allow>GetCertificates</Allow>
|
||||||
</Privilege>
|
<Allow>PersistSessions</Allow>
|
||||||
<Privilege name="PrivilegeSetUserState" policy="UserAccessPrivilege">
|
</Privilege>
|
||||||
<Deny>SYSTEM</Deny>
|
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
||||||
<Allow>DISABLED</Allow>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Allow>ENABLED</Allow>
|
</Privilege>
|
||||||
</Privilege>
|
<Privilege name="PrivilegeSetUserState" policy="UserAccessPrivilege">
|
||||||
<Privilege name="PrivilegeAddRoleToUser" policy="UserAccessPrivilege">
|
<Deny>SYSTEM</Deny>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Allow>DISABLED</Allow>
|
||||||
</Privilege>
|
<Allow>ENABLED</Allow>
|
||||||
<Privilege name="PrivilegeGetRole" policy="RoleAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeAddRoleToUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="GetSession" policy="UserSessionAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeGetRole" policy="RoleAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="GetSession" policy="UserSessionAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeRemoveRole" policy="RoleAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeRemoveRoleFromUser" policy="UserAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeRemoveRole" policy="RoleAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeModifyRole" policy="RoleAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeRemoveRoleFromUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="PrivilegeAddRole" policy="RoleAccessPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeModifyRole" policy="RoleAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Role>
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeAddRole" policy="RoleAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
|
<Role name="agent">
|
||||||
|
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.privilege.handler.SystemAction" policy="DefaultPrivilege">
|
||||||
|
<Allow>li.strolch.runtime.privilege.StrolchSystemAction</Allow>
|
||||||
|
<Allow>li.strolch.runtime.privilege.StrolchSystemActionWithResult</Allow>
|
||||||
|
<Allow>li.strolch.persistence.postgresql.PostgreSqlSchemaInitializer</Allow>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
||||||
|
<Allow>Persist</Allow>
|
||||||
|
<Allow>GetCertificates</Allow>
|
||||||
|
<Allow>PersistSessions</Allow>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
</Roles>
|
</Roles>
|
||||||
|
|
|
@ -1,10 +1,21 @@
|
||||||
<?xml version="1.0" encoding="UTF-8"?>
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
<Users>
|
<Users>
|
||||||
<User userId="0" username="agent">
|
|
||||||
<State>SYSTEM</State>
|
<!-- Password: admin -->
|
||||||
|
<User userId="1" username="bob" password="cb69962946617da006a2f95776d78b49e5ec7941d2bdb2d25cdb05f957f64344" salt="61646d696e">
|
||||||
|
<Firstname>User</Firstname>
|
||||||
|
<Lastname>Bob</Lastname>
|
||||||
|
<State>ENABLED</State>
|
||||||
|
<Locale>en-GB</Locale>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role>agent</Role>
|
<Role>AppUser</Role>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
|
<Role>UserPrivileges</Role>
|
||||||
</Roles>
|
</Roles>
|
||||||
|
<Properties>
|
||||||
|
<Property name="organization" value="strolch.li"/>
|
||||||
|
<Property name="organizationalUnit" value="Development"/>
|
||||||
|
</Properties>
|
||||||
</User>
|
</User>
|
||||||
|
|
||||||
<!-- Password: admin -->
|
<!-- Password: admin -->
|
||||||
|
@ -14,11 +25,22 @@
|
||||||
<State>ENABLED</State>
|
<State>ENABLED</State>
|
||||||
<Locale>en-GB</Locale>
|
<Locale>en-GB</Locale>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role>AppUser</Role>
|
<Role>StrolchAdmin</Role>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
|
<Role>PrivilegeAdmin</Role>
|
||||||
</Roles>
|
</Roles>
|
||||||
<Properties>
|
<Properties>
|
||||||
<Property name="organization" value="strolch.li"/>
|
<Property name="organization" value="strolch.li"/>
|
||||||
<Property name="organizationalUnit" value="Development"/>
|
<Property name="organizationalUnit" value="Development"/>
|
||||||
</Properties>
|
</Properties>
|
||||||
</User>
|
</User>
|
||||||
|
|
||||||
|
<User userId="0" username="agent">
|
||||||
|
<State>SYSTEM</State>
|
||||||
|
<Roles>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
|
<Role>PrivilegeAdmin</Role>
|
||||||
|
<Role>agent</Role>
|
||||||
|
</Roles>
|
||||||
|
</User>
|
||||||
</Users>
|
</Users>
|
||||||
|
|
|
@ -1,189 +1,186 @@
|
||||||
<?xml version="1.0" encoding="UTF-8"?>
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role name="agent">
|
|
||||||
<Privilege name="li.strolch.privilege.handler.SystemAction" policy="DefaultPrivilege">
|
|
||||||
<Allow>li.strolch.runtime.privilege.StrolchSystemAction</Allow>
|
|
||||||
<Allow>li.strolch.runtime.privilege.StrolchSystemActionWithResult</Allow>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
|
||||||
<Allow>PersistSessions</Allow>
|
|
||||||
<Allow>GetCertificates</Allow>
|
|
||||||
</Privilege>
|
|
||||||
|
|
||||||
<Privilege name="GetResource" policy="ModelPrivilege">
|
<Role name="AppUser">
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="GetOrder" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="GetActivity" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="AddResource" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="AddOrder" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
</Role>
|
||||||
</Privilege>
|
|
||||||
<Privilege name="AddActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
</Role>
|
|
||||||
|
|
||||||
<Role name="AppUser">
|
<!--
|
||||||
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
Internal
|
||||||
<AllAllowed>true</AllAllowed>
|
-->
|
||||||
</Privilege>
|
<Role name="ModelAccessor">
|
||||||
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
<Privilege name="GetOrder" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
<Privilege name="AddOrder" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
<Privilege name="AddActivity" policy="ModelPrivilege">
|
||||||
<AllAllowed>true</AllAllowed>
|
<AllAllowed>true</AllAllowed>
|
||||||
</Privilege>
|
</Privilege>
|
||||||
|
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="GetActivity" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="GetResource" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="AddResource" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
<Privilege name="GetResource" policy="ModelPrivilege">
|
<Role name="StrolchAdmin">
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="GetOrder" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="GetActivity" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.handler.operationslog.OperationsLog" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="AddResource" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="AddOrder" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="AddActivity" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="UpdateResource" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.job.StrolchJob" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="UpdateOrder" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.job.StrolchJobsHandler" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="UpdateActivity" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="RemoveResource" policy="ModelPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
</Role>
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveOrder" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="RemoveActivity" policy="ModelPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
</Role>
|
|
||||||
|
|
||||||
<Role name="StrolchAdmin">
|
<Role name="UserPrivileges">
|
||||||
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege"/>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege"/>
|
||||||
</Privilege>
|
</Role>
|
||||||
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
<Role name="PrivilegeAdmin">
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="li.strolch.handler.operationslog.OperationsLog" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="InvalidateSession" policy="UserSessionAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="li.strolch.report.ReportSearch" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege">
|
||||||
</Privilege>
|
<AllAllowed>true</AllAllowed>
|
||||||
<Privilege name="li.strolch.job.StrolchJob" policy="DefaultPrivilege">
|
</Privilege>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
||||||
</Privilege>
|
<Allow>Reload</Allow>
|
||||||
<Privilege name="li.strolch.job.StrolchJobsHandler" policy="DefaultPrivilege">
|
<Allow>GetPolicies</Allow>
|
||||||
<AllAllowed>true</AllAllowed>
|
<Allow>Persist</Allow>
|
||||||
</Privilege>
|
<Allow>GetCertificates</Allow>
|
||||||
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
<Allow>PersistSessions</Allow>
|
||||||
<AllAllowed>true</AllAllowed>
|
</Privilege>
|
||||||
</Privilege>
|
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
||||||
</Role>
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeSetUserState" policy="UserAccessPrivilege">
|
||||||
|
<Deny>SYSTEM</Deny>
|
||||||
|
<Allow>DISABLED</Allow>
|
||||||
|
<Allow>ENABLED</Allow>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeAddRoleToUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeGetRole" policy="RoleAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="GetSession" policy="UserSessionAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeRemoveRole" policy="RoleAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeRemoveRoleFromUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeModifyRole" policy="RoleAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeAddRole" policy="RoleAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
|
<Role name="agent">
|
||||||
|
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.search.StrolchSearch" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.privilege.handler.SystemAction" policy="DefaultPrivilege">
|
||||||
|
<Allow>li.strolch.runtime.privilege.StrolchSystemAction</Allow>
|
||||||
|
<Allow>li.strolch.runtime.privilege.StrolchSystemActionWithResult</Allow>
|
||||||
|
<Allow>li.strolch.persistence.postgresql.PostgreSqlSchemaInitializer</Allow>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
||||||
|
<Allow>Persist</Allow>
|
||||||
|
<Allow>GetCertificates</Allow>
|
||||||
|
<Allow>PersistSessions</Allow>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.model.query.StrolchQuery" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="li.strolch.service.api.Service" policy="DefaultPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
||||||
|
<AllAllowed>true</AllAllowed>
|
||||||
|
</Privilege>
|
||||||
|
</Role>
|
||||||
|
|
||||||
<Role name="PrivilegeAdmin">
|
|
||||||
<Privilege name="PrivilegeAddUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeRemoveUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="InvalidateSession" policy="UserSessionAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeSetUserPassword" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeSetUserLocale" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeAction" policy="DefaultPrivilege">
|
|
||||||
<Allow>Reload</Allow>
|
|
||||||
<Allow>GetPolicies</Allow>
|
|
||||||
<Allow>Persist</Allow>
|
|
||||||
<Allow>GetCertificates</Allow>
|
|
||||||
<Allow>PersistSessions</Allow>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeGetUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeSetUserState" policy="UserAccessPrivilege">
|
|
||||||
<Deny>SYSTEM</Deny>
|
|
||||||
<Allow>DISABLED</Allow>
|
|
||||||
<Allow>ENABLED</Allow>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeAddRoleToUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeGetRole" policy="RoleAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="GetSession" policy="UserSessionAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeModifyUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeRemoveRole" policy="RoleAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeRemoveRoleFromUser" policy="UserAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeModifyRole" policy="RoleAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
<Privilege name="PrivilegeAddRole" policy="RoleAccessPrivilege">
|
|
||||||
<AllAllowed>true</AllAllowed>
|
|
||||||
</Privilege>
|
|
||||||
</Role>
|
|
||||||
</Roles>
|
</Roles>
|
||||||
|
|
|
@ -1,10 +1,21 @@
|
||||||
<?xml version="1.0" encoding="UTF-8"?>
|
<?xml version="1.0" encoding="UTF-8"?>
|
||||||
<Users>
|
<Users>
|
||||||
<User userId="0" username="agent">
|
|
||||||
<State>SYSTEM</State>
|
<!-- Password: admin -->
|
||||||
|
<User userId="1" username="bob" password="cb69962946617da006a2f95776d78b49e5ec7941d2bdb2d25cdb05f957f64344" salt="61646d696e">
|
||||||
|
<Firstname>User</Firstname>
|
||||||
|
<Lastname>Bob</Lastname>
|
||||||
|
<State>ENABLED</State>
|
||||||
|
<Locale>en-GB</Locale>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role>agent</Role>
|
<Role>AppUser</Role>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
|
<Role>UserPrivileges</Role>
|
||||||
</Roles>
|
</Roles>
|
||||||
|
<Properties>
|
||||||
|
<Property name="organization" value="strolch.li"/>
|
||||||
|
<Property name="organizationalUnit" value="Development"/>
|
||||||
|
</Properties>
|
||||||
</User>
|
</User>
|
||||||
|
|
||||||
<!-- Password: admin -->
|
<!-- Password: admin -->
|
||||||
|
@ -14,8 +25,8 @@
|
||||||
<State>ENABLED</State>
|
<State>ENABLED</State>
|
||||||
<Locale>en-GB</Locale>
|
<Locale>en-GB</Locale>
|
||||||
<Roles>
|
<Roles>
|
||||||
<Role>AppUser</Role>
|
|
||||||
<Role>StrolchAdmin</Role>
|
<Role>StrolchAdmin</Role>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
<Role>PrivilegeAdmin</Role>
|
<Role>PrivilegeAdmin</Role>
|
||||||
</Roles>
|
</Roles>
|
||||||
<Properties>
|
<Properties>
|
||||||
|
@ -23,4 +34,13 @@
|
||||||
<Property name="organizationalUnit" value="Development"/>
|
<Property name="organizationalUnit" value="Development"/>
|
||||||
</Properties>
|
</Properties>
|
||||||
</User>
|
</User>
|
||||||
|
|
||||||
|
<User userId="0" username="agent">
|
||||||
|
<State>SYSTEM</State>
|
||||||
|
<Roles>
|
||||||
|
<Role>ModelAccessor</Role>
|
||||||
|
<Role>PrivilegeAdmin</Role>
|
||||||
|
<Role>agent</Role>
|
||||||
|
</Roles>
|
||||||
|
</User>
|
||||||
</Users>
|
</Users>
|
||||||
|
|
Loading…
Reference in New Issue