| 1 |
808
|
berkley
|
<!--
|
| 2 |
|
|
'$RCSfile$'
|
| 3 |
|
|
Copyright: 2000 Regents of the University of California and the
|
| 4 |
|
|
National Center for Ecological Analysis and Synthesis
|
| 5 |
|
|
For Details: http://knb.ecoinformatics.org/
|
| 6 |
|
|
|
| 7 |
|
|
'$Author$'
|
| 8 |
|
|
'$Date$'
|
| 9 |
|
|
'$Revision$'
|
| 10 |
|
|
|
| 11 |
|
|
This program is free software; you can redistribute it and/or modify
|
| 12 |
|
|
it under the terms of the GNU General Public License as published by
|
| 13 |
|
|
the Free Software Foundation; either version 2 of the License, or
|
| 14 |
|
|
(at your option) any later version.
|
| 15 |
|
|
|
| 16 |
|
|
This program is distributed in the hope that it will be useful,
|
| 17 |
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
| 18 |
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
| 19 |
|
|
GNU General Public License for more details.
|
| 20 |
|
|
|
| 21 |
|
|
You should have received a copy of the GNU General Public License
|
| 22 |
|
|
along with this program; if not, write to the Free Software
|
| 23 |
|
|
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
| 24 |
|
|
-->
|
| 25 |
|
|
|
| 26 |
|
|
|
| 27 |
|
|
<!-- The root element represents a list of principals that should be either
|
| 28 |
|
|
allowed or denied access to a resource. -->
|
| 29 |
|
|
<!ELEMENT acl (identifier+,allow*, deny*)>
|
| 30 |
|
|
<!ATTLIST acl authSystem CDATA "ldap"
|
| 31 |
|
|
order (allowFirst|denyFirst) "allowFirst">
|
| 32 |
|
|
<!-- The authentication system that this access file uses -->
|
| 33 |
|
|
<!-- The order in which the rules should be applied for this object -->
|
| 34 |
|
|
<!-- The public read access to this object -->
|
| 35 |
|
|
|
| 36 |
|
|
<!ELEMENT identifier (#PCDATA)>
|
| 37 |
|
|
<!-- an allow rule adds the listed permission for a particular principal -->
|
| 38 |
|
|
<!ELEMENT allow (principal+, permission+, duration?, ticketCount?)>
|
| 39 |
|
|
<!-- a deny rule removes the listed permission for a particular principal -->
|
| 40 |
|
|
<!ELEMENT deny (principal+, permission+, duration?, ticketCount?)>
|
| 41 |
|
|
<!-- the user/group in the authentication system to whom this rule applies -->
|
| 42 |
|
|
<!ELEMENT principal (#PCDATA)>
|
| 43 |
|
|
<!-- the permission to be allowed or denied (read/write/all) -->
|
| 44 |
|
|
<!ELEMENT permission (#PCDATA)>
|
| 45 |
|
|
<!-- the duration of the permission -->
|
| 46 |
|
|
<!ELEMENT duration (startDate, stopDate)>
|
| 47 |
|
|
<!ELEMENT startDate (#PCDATA)>
|
| 48 |
|
|
<!ELEMENT stopDate (#PCDATA)>
|
| 49 |
|
|
<!-- the number of accesses allowed by this rule if access is granted -->
|
| 50 |
|
|
<!ELEMENT ticketCount (#PCDATA)>
|
| 51 |
|
|
|
| 52 |
|
|
<!-- EOF -->
|