summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAaron Hay <aaron.hay@att.com>2018-10-30 18:40:07 -0400
committerAaron Hay <aaron.hay@att.com>2018-10-30 18:40:25 -0400
commit06633269c37001194d595820ee7063109fe2f9e6 (patch)
treee542397ae8785abc0ea85f41ad9c98c2a5b7a6b9
parent634b455354619244a128c072974f2929683b5fd4 (diff)
Update AAA shiro configuration for CAS AAF
Update configuration file based on AAF bootstrap data in the AAF role.dat file. Change-Id: Iafbb1f37383fb97a00441539e14ace8e9282a330 Issue-ID: OOM-1488 Signed-off-by: Aaron Hay <aaron.hay@att.com>
-rw-r--r--kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml14
1 files changed, 7 insertions, 7 deletions
diff --git a/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml b/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml
index 3dd78d3cdf..81834eaafc 100644
--- a/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml
+++ b/kubernetes/appc/resources/config/appc/opt/onap/appc/data/properties/aaa-app-config.xml
@@ -80,37 +80,37 @@
<urls>
<pair-key>/auth/**</pair-key>
<!-- <pair-value>authcBasic, roles[admin], dynamicAuthorization</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/config/aaa-cert-mdsal**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/operational/aaa-cert-mdsal**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/operations/aaa-cert-rpc**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/config/aaa-authn-model**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/operational/aaa-authn-model**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/restconf/operations/cluster-admin**</pair-key>
<!-- <pair-value>authcBasic, roles[admin]</pair-value> -->
- <pair-value>authcBasic, roles[org.onap.appc.odl|odl-admin|*]</pair-value>
+ <pair-value>authcBasic, roles[org.onap.appc.odl|odl-api|*]</pair-value>
</urls>
<urls>
<pair-key>/**</pair-key>