From e8eeda4976e0dd356a0b692ba0e56d9fc3dd853f Mon Sep 17 00:00:00 2001
From: Gerald Baulig <gerald.baulig@n-fuse.co>
Date: Fri, 10 May 2024 14:03:44 +0200
Subject: [PATCH] fix(rules): add policy for resource credential

---
 datasets/system/data/seed-data/policies.yaml | 25 ++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/datasets/system/data/seed-data/policies.yaml b/datasets/system/data/seed-data/policies.yaml
index 9ea85e7..1ead3b2 100644
--- a/datasets/system/data/seed-data/policies.yaml
+++ b/datasets/system/data/seed-data/policies.yaml
@@ -195,6 +195,31 @@
           - id: urn:restorecommerce:acs:names:ownerInstance
             value: system
   combiningAlgorithm: urn:oasis:names:tc:xacml:3.0:rule-combining-algorithm:permit-overrides
+---
+  id: credential-policy
+  name: Credential Policy
+  description: Policy for resource Credential
+  evaluationCacheable: false
+  effect: PERMIT
+  target:
+    actions: [ ]
+    subjects: [ ]
+    resources:
+      - id: urn:restorecommerce:acs:names:model:entity
+        value: urn:restorecommerce:acs:model:credential.Credental
+  rules:
+    - superadministrator-permits-all
+    - user-permits-all-owned
+    - fallback-deny-all
+  meta:
+    modifiedBy: ""
+    owners:
+      - id: urn:restorecommerce:acs:names:ownerIndicatoryEntity
+        value: urn:restorecommerce:acs:model:organization.Organization
+        attributes:
+          - id: urn:restorecommerce:acs:names:ownerInstance
+            value: system
+  combiningAlgorithm: urn:oasis:names:tc:xacml:3.0:rule-combining-algorithm:permit-overrides
 ---
   id: fulfillment-courier-policy
   name: FulfillmentCourier Policy