Project

General

Profile

1
<!--
2
       '$RCSfile$'
3
       Copyright: 2000 Regents of the University of California and the
4
                  National Center for Ecological Analysis and Synthesis
5
     For Details: http://knb.ecoinformatics.org/
6

    
7
        '$Author: berkley $'
8
          '$Date: 2001-07-25 08:57:31 -0700 (Wed, 25 Jul 2001) $'
9
      '$Revision: 808 $'
10

    
11
    This program is free software; you can redistribute it and/or modify
12
    it under the terms of the GNU General Public License as published by
13
    the Free Software Foundation; either version 2 of the License, or
14
    (at your option) any later version.
15

    
16
    This program is distributed in the hope that it will be useful,
17
    but WITHOUT ANY WARRANTY; without even the implied warranty of
18
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
19
    GNU General Public License for more details.
20

    
21
    You should have received a copy of the GNU General Public License
22
    along with this program; if not, write to the Free Software
23
    Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
24
-->
25

    
26

    
27
<!-- The root element represents a list of principals that should be either
28
     allowed or denied access to a resource. -->
29
<!ELEMENT acl (identifier+,allow*, deny*)>
30
<!ATTLIST acl authSystem CDATA "ldap"
31
              order  (allowFirst|denyFirst) "allowFirst">
32
<!-- The authentication system that this access file uses -->
33
<!-- The order in which the rules should be applied for this object -->
34
<!-- The public read access to this object -->
35

    
36
<!ELEMENT identifier (#PCDATA)>
37
<!-- an allow rule adds the listed permission for a particular principal -->
38
<!ELEMENT allow (principal+, permission+, duration?, ticketCount?)>
39
<!-- a deny rule removes the listed permission for a particular principal -->
40
<!ELEMENT deny (principal+, permission+, duration?, ticketCount?)>
41
<!-- the user/group in the authentication system to whom this rule applies -->
42
<!ELEMENT principal (#PCDATA)>
43
<!-- the permission to be allowed or denied (read/write/all) -->
44
<!ELEMENT permission (#PCDATA)>
45
<!-- the duration of the permission -->
46
<!ELEMENT duration (startDate, stopDate)>
47
<!ELEMENT startDate (#PCDATA)>
48
<!ELEMENT stopDate (#PCDATA)>
49
<!-- the number of accesses allowed by this rule if access is granted -->
50
<!ELEMENT ticketCount (#PCDATA)>
51

    
52
<!-- EOF -->
(1-1/18)