Skip to content

Commit

Permalink
fix(rules): set back to fallback-deny-rule and drop fallback-deny-policy
Browse files Browse the repository at this point in the history
  • Loading branch information
Gerald Baulig committed Oct 7, 2024
1 parent 25340e6 commit cdbe10e
Show file tree
Hide file tree
Showing 2 changed files with 34 additions and 1 deletion.
34 changes: 34 additions & 0 deletions datasets/system/data/seed-data/policies.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@
- user-permits-all-owned
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -87,6 +88,7 @@
- sales-permits-read-hr-scoped
- customer-permits-read-hr-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -116,6 +118,7 @@
- user-permits-all-owned
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -142,6 +145,7 @@
- customer-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -168,6 +172,7 @@
- customer-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -196,6 +201,7 @@
- user-permits-all-owned
- customer-permits-read-owned
- unauthenticated-user-permits-read-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -218,6 +224,7 @@
value: urn:restorecommerce:acs:model:credential.Credental
rules:
- user-permits-all-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -242,6 +249,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-read-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -266,6 +274,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-read-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -291,6 +300,7 @@
- sales-permits-all-hr-scoped
- moderator-permits-read-hr-scoped
- user-permits-read-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -316,6 +326,7 @@
- sales-permits-all-hr-scoped
- moderator-permits-read-hr-scoped
- user-permits-read-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -342,6 +353,7 @@
- customer-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -366,6 +378,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -393,6 +406,7 @@
- sales-permits-all-hr-scoped
- moderator-permits-all-hr-scoped
- user-permits-read-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -419,6 +433,7 @@
- administrator-permits-all-hr-scoped
- sales-requires-order-state-submitted
- user-requires-order-state-pending
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -464,6 +479,7 @@
rules:
- administrator-permits-all-hr-scoped
- customer-requires-order-state-pending
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -489,6 +505,7 @@
- sales-requires-order-state-submitted
- moderator-requires-order-state-submitted
- customer-requires-order-state-submitted
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -513,6 +530,7 @@
- administrator-permits-all-hr-scoped
- sales-requires-order-state-submitted
- sales-requires-order-state-withdrawn
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -543,6 +561,7 @@
- customer-permits-read-hr-scoped
- user-permits-all-owned
- permit-read-strict-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -570,6 +589,7 @@
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- user-permits-all-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -596,6 +616,7 @@
- customer-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -621,6 +642,7 @@
- sales-permits-read-hr-scoped
- moderator-permits-read-hr-scoped
- user-permits-read-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -645,6 +667,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -669,6 +692,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -693,6 +717,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -717,6 +742,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -763,6 +789,7 @@
- administrator-permits-all-hr-scoped
- sales-permits-all-hr-scoped
- customer-permits-read-hr-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -787,6 +814,7 @@
- administrator-permits-all-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -812,6 +840,7 @@
- sales-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -837,6 +866,7 @@
- sales-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -859,6 +889,7 @@
value: urn:restorecommerce:acs:model:token.Token
rules:
- user-permits-all-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand All @@ -884,6 +915,7 @@
- sales-permits-read-hr-scoped
- permit-read-strict-scoped
- domainless-unauthenticated-permits-read-system
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -912,6 +944,7 @@
- user-permits-read-owned
- user-permits-update-owned
- unauthenticated-user-permits-create-strict-scoped
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down Expand Up @@ -942,6 +975,7 @@
- domainless-unauthenticated-permits-update
- unauthenticated-user-permits-update-hr-scoped
- user-permits-update-user-owned
- fallback-deny-all
meta:
owners:
- id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
Expand Down
1 change: 0 additions & 1 deletion datasets/system/data/seed-data/policy_sets.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,6 @@
- unit-code-policy
- user-policy
- user-credentials-reset-policy
- fallback-deny-policy
meta:
modifiedBy: ""
owners:
Expand Down

0 comments on commit cdbe10e

Please sign in to comment.