diff options
Diffstat (limited to 'src/main/resources/META-INF/securityFilterRules.json')
-rw-r--r-- | src/main/resources/META-INF/securityFilterRules.json | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/src/main/resources/META-INF/securityFilterRules.json b/src/main/resources/META-INF/securityFilterRules.json new file mode 100644 index 00000000..b0315374 --- /dev/null +++ b/src/main/resources/META-INF/securityFilterRules.json @@ -0,0 +1,52 @@ +{ + "pathFilter": { + "deniedPaths": [ + { + "path": "/camunda/api/engine/.*", + "methods": "*" + }, + { + "path": "/camunda/api/cockpit/.*", + "methods": "*" + }, + { + "path": "/camunda/app/tasklist/{engine}/.*", + "methods": "*" + }, + { + "path": "/camunda/app/cockpit/{engine}/.*", + "methods": "*" + } + ], + "allowedPaths": [ + { + "path": "/camunda/api/engine/engine/", + "methods": "GET" + }, + { + "path": "/camunda/api/{app:cockpit}/plugin/{engine}/static/.*", + "methods": "GET" + }, + { + "path": "/camunda/api/{app:cockpit}/plugin/{plugin}/{engine}/.*", + "methods": "*", + "authorizer": "org.camunda.bpm.webapp.impl.security.filter.EngineRequestAuthorizer" + }, + { + "path": "/camunda/api/engine/engine/{engine}/.*", + "methods": "*", + "authorizer": "org.camunda.bpm.webapp.impl.security.filter.EngineRequestAuthorizer" + }, + { + "path": "/camunda/app/{app:cockpit}/{engine}/.*", + "methods": "*", + "authorizer": "org.camunda.bpm.webapp.impl.security.filter.ApplicationRequestAuthorizer" + }, + { + "path": "/camunda/app/{app:tasklist}/{engine}/.*", + "methods": "*", + "authorizer": "org.camunda.bpm.webapp.impl.security.filter.ApplicationRequestAuthorizer" + } + ] + } +} |