diff options
author | Aaron Hay <aaron.hay@att.com> | 2018-10-30 18:40:07 -0400 |
---|---|---|
committer | Aaron Hay <aaron.hay@att.com> | 2018-10-30 18:40:25 -0400 |
commit | 06633269c37001194d595820ee7063109fe2f9e6 (patch) | |
tree | e542397ae8785abc0ea85f41ad9c98c2a5b7a6b9 | |
parent | 634b455354619244a128c072974f2929683b5fd4 (diff) |
Update AAA shiro configuration for CAS AAF
Update configuration file based on AAF bootstrap data in the AAF role.dat file.
Change-Id: Iafbb1f37383fb97a00441539e14ace8e9282a330
Issue-ID: OOM-1488
Signed-off-by: Aaron Hay <aaron.hay@att.com>
-rw-r--r-- | kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml b/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml index 3dd78d3cdf..81834eaafc 100644 --- a/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml +++ b/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml @@ -80,37 +80,37 @@ <urls> <pair-key>/auth/**</pair-key> <!-- <pair-value>authcBasic, roles[admin], dynamicAuthorization</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/config/aaa-cert-mdsal**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/operational/aaa-cert-mdsal**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/operations/aaa-cert-rpc**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/config/aaa-authn-model**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/operational/aaa-authn-model**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/restconf/operations/cluster-admin**</pair-key> <!-- <pair-value>authcBasic, roles[admin]</pair-value> --> - <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value> + <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value> </urls> <urls> <pair-key>/**</pair-key> |