Repository: incubator-geode Updated Branches: refs/heads/feature/GEODE-37_2 7c20e6931 -> 9d7a6960a
http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/authz-dummy.xml ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/authz-dummy.xml b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-dummy.xml new file mode 100644 index 0000000..de0cd17 --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-dummy.xml @@ -0,0 +1,124 @@ +<?xml version="1.0" encoding="UTF-8"?> + +<!-- + ~ Licensed to the Apache Software Foundation (ASF) under one or more + ~ contributor license agreements. See the NOTICE file distributed with + ~ this work for additional information regarding copyright ownership. + ~ The ASF licenses this file to You under the Apache License, Version 2.0 + ~ (the "License"); you may not use this file except in compliance with + ~ the License. You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License. + --> + +<!DOCTYPE acl PUBLIC "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "com/gemstone/gemfire/security/templates/authz6_0.dtd" > +<acl> + + <role name="reader"> + <user>reader0</user> + <user>reader1</user> + <user>reader2</user> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="writer"> + <user>writer0</user> + <user>writer1</user> + <user>writer2</user> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="cacheOps"> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="queryRegions"> + <user>reader3</user> + <user>reader4</user> + </role> + + <role name="registerInterest"> + <user>reader5</user> + <user>reader6</user> + </role> + + <role name="unregisterInterest"> + <user>reader5</user> + <user>reader7</user> + </role> + + <role name="onRegionFunctionExecutor"> + <user>reader8</user> + </role> + + <role name="onServerFunctionExecutor"> + <user>reader9</user> + </role> + + <permission role="cacheOps"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + <operation>REGION_CREATE</operation> + <operation>REGION_DESTROY</operation> + </permission> + + <permission role="reader"> + <operation>GET</operation> + <operation>REGISTER_INTEREST</operation> + <operation>UNREGISTER_INTEREST</operation> + <operation>KEY_SET</operation> + <operation>CONTAINS_KEY</operation> + <operation>EXECUTE_FUNCTION</operation> + </permission> + + <permission role="writer"> + <operation>PUT</operation> + <operation>PUTALL</operation> + <operation>DESTROY</operation> + <operation>INVALIDATE</operation> + <operation>REGION_CLEAR</operation> + </permission> + + <permission role="queryRegions" regions="//Portfolios,/Positions/,AuthRegion"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + + <permission role="onRegionFunctionExecutor" regions="secureRegion,Positions"> + <operation>PUT</operation> + <operation functionIds="SecureFunction,OptimizationFunction" optimizeForWrite="false" keySet="KEY-0,KEY-1">EXECUTE_FUNCTION</operation> + </permission> + + <permission role="onServerFunctionExecutor" > + <operation>PUT</operation> + <operation functionIds="SecureFunction,OptimizationFunction">EXECUTE_FUNCTION</operation> + </permission> + + <permission role="registerInterest"> + <operation>REGISTER_INTEREST</operation> + <operation>GET</operation> + </permission> + + <permission role="unregisterInterest"> + <operation>UNREGISTER_INTEREST</operation> + <operation>GET</operation> + </permission> + +</acl> http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/authz-ldap.xml ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/authz-ldap.xml b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-ldap.xml new file mode 100644 index 0000000..cdfd478 --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-ldap.xml @@ -0,0 +1,83 @@ +<?xml version="1.0" encoding="UTF-8"?> + +<!-- + ~ Licensed to the Apache Software Foundation (ASF) under one or more + ~ contributor license agreements. See the NOTICE file distributed with + ~ this work for additional information regarding copyright ownership. + ~ The ASF licenses this file to You under the Apache License, Version 2.0 + ~ (the "License"); you may not use this file except in compliance with + ~ the License. You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License. + --> + +<!DOCTYPE acl PUBLIC "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "com/gemstone/gemfire/security/templates/authz5_5.dtd" > +<acl> + + <role name="reader"> + <user>gemfire1</user> + <user>gemfire2</user> + <user>gemfire3</user> + <user>gemfire4</user> + <user>gemfire5</user> + </role> + + <role name="writer"> + <user>gemfire1</user> + <user>gemfire2</user> + <user>gemfire6</user> + <user>gemfire7</user> + <user>gemfire8</user> + </role> + + <role name="cacheOps"> + <user>gemfire1</user> + <user>gemfire2</user> + </role> + + <role name="queryRegions"> + <user>gemfire9</user> + <user>gemfire10</user> + </role> + + <permission role="cacheOps"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + <operation>REGION_CREATE</operation> + <operation>REGION_DESTROY</operation> + </permission> + + <permission role="reader"> + <operation>GET</operation> + <operation>REGISTER_INTEREST</operation> + <operation>UNREGISTER_INTEREST</operation> + <operation>KEY_SET</operation> + <operation>CONTAINS_KEY</operation> + <operation>EXECUTE_FUNCTION</operation> + </permission> + + <permission role="writer"> + <operation>PUT</operation> + <operation>PUTALL</operation> + <operation>DESTROY</operation> + <operation>INVALIDATE</operation> + <operation>REGION_CLEAR</operation> + </permission> + + <permission role="queryRegions" regions="Portfolios,/Positions//,/AuthRegion"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + +</acl> http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-dummy.xml ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-dummy.xml b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-dummy.xml new file mode 100644 index 0000000..f64eb2e --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-dummy.xml @@ -0,0 +1,104 @@ +<?xml version="1.0" encoding="UTF-8"?> + +<!-- + ~ Licensed to the Apache Software Foundation (ASF) under one or more + ~ contributor license agreements. See the NOTICE file distributed with + ~ this work for additional information regarding copyright ownership. + ~ The ASF licenses this file to You under the Apache License, Version 2.0 + ~ (the "License"); you may not use this file except in compliance with + ~ the License. You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License. + --> + +<!DOCTYPE acl PUBLIC "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "com/gemstone/gemfire/security/templates/authz6_0.dtd" > +<acl> + + <role name="reader"> + <user>user1</user> + <user>user2</user> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="writer"> + <user>user3</user> + <user>user4</user> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="cacheOps"> + <user>user1</user> + <user>user2</user> + <user>root</user> + <user>admin</user> + <user>administrator</user> + </role> + + <role name="queryRegions"> + <user>user5</user> + <user>user6</user> + </role> + + <role name="registerInterest"> + <user>user7</user> + <user>user8</user> + </role> + + <role name="unregisterInterest"> + <user>user5</user> + <user>user7</user> + </role> + + <permission role="cacheOps"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + + <permission role="reader"> + <operation>GET</operation> + <operation>REGISTER_INTEREST</operation> + <operation>UNREGISTER_INTEREST</operation> + <operation>KEY_SET</operation> + <operation>CONTAINS_KEY</operation> + <operation>EXECUTE_FUNCTION</operation> + </permission> + + <permission role="writer"> + <operation>PUT</operation> + <operation>PUTALL</operation> + <operation>DESTROY</operation> + <operation>INVALIDATE</operation> + <operation>REGION_CLEAR</operation> + </permission> + + <permission role="queryRegions" regions="//Portfolios,/Positions/,AuthRegion"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + + <permission role="registerInterest"> + <operation>REGISTER_INTEREST</operation> + <operation>GET</operation> + </permission> + + <permission role="unregisterInterest"> + <operation>UNREGISTER_INTEREST</operation> + <operation>GET</operation> + </permission> + +</acl> http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-ldap.xml ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-ldap.xml b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-ldap.xml new file mode 100644 index 0000000..5469972 --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/generator/authz-multiUser-ldap.xml @@ -0,0 +1,81 @@ +<?xml version="1.0" encoding="UTF-8"?> + +<!-- + ~ Licensed to the Apache Software Foundation (ASF) under one or more + ~ contributor license agreements. See the NOTICE file distributed with + ~ this work for additional information regarding copyright ownership. + ~ The ASF licenses this file to You under the Apache License, Version 2.0 + ~ (the "License"); you may not use this file except in compliance with + ~ the License. You may obtain a copy of the License at + ~ + ~ http://www.apache.org/licenses/LICENSE-2.0 + ~ + ~ Unless required by applicable law or agreed to in writing, software + ~ distributed under the License is distributed on an "AS IS" BASIS, + ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + ~ See the License for the specific language governing permissions and + ~ limitations under the License. + --> + +<!DOCTYPE acl PUBLIC "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "com/gemstone/gemfire/security/templates/authz5_5.dtd" > +<acl> + + <role name="reader"> + <user>gemfire1</user> + <user>gemfire2</user> + <user>gemfire3</user> + <user>gemfire4</user> + <user>gemfire5</user> + </role> + + <role name="writer"> + <user>gemfire1</user> + <user>gemfire2</user> + <user>gemfire6</user> + <user>gemfire7</user> + <user>gemfire8</user> + </role> + + <role name="cacheOps"> + <user>gemfire1</user> + <user>gemfire2</user> + </role> + + <role name="queryRegions"> + <user>gemfire9</user> + <user>gemfire10</user> + </role> + + <permission role="cacheOps"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + + <permission role="reader"> + <operation>GET</operation> + <operation>REGISTER_INTEREST</operation> + <operation>UNREGISTER_INTEREST</operation> + <operation>KEY_SET</operation> + <operation>CONTAINS_KEY</operation> + <operation>EXECUTE_FUNCTION</operation> + </permission> + + <permission role="writer"> + <operation>PUT</operation> + <operation>PUTALL</operation> + <operation>DESTROY</operation> + <operation>INVALIDATE</operation> + <operation>REGION_CLEAR</operation> + </permission> + + <permission role="queryRegions" regions="Portfolios,/Positions//,/AuthRegion"> + <operation>QUERY</operation> + <operation>EXECUTE_CQ</operation> + <operation>STOP_CQ</operation> + <operation>CLOSE_CQ</operation> + </permission> + +</acl> http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire1.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire1.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire1.keystore new file mode 100644 index 0000000..15270bb Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire1.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire10.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire10.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire10.keystore new file mode 100644 index 0000000..bb6f827 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire10.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire11.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire11.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire11.keystore new file mode 100644 index 0000000..6839c74 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire11.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire2.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire2.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire2.keystore new file mode 100644 index 0000000..fcb7ab8 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire2.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire3.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire3.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire3.keystore new file mode 100644 index 0000000..19afc4b Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire3.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire4.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire4.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire4.keystore new file mode 100644 index 0000000..c65916a Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire4.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire5.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire5.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire5.keystore new file mode 100644 index 0000000..d738cca Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire5.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire6.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire6.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire6.keystore new file mode 100644 index 0000000..1fea2d3 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire6.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire7.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire7.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire7.keystore new file mode 100644 index 0000000..7a3187c Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire7.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire8.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire8.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire8.keystore new file mode 100644 index 0000000..a3bb886 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire8.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire9.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire9.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire9.keystore new file mode 100644 index 0000000..674b4e6 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/gemfire9.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire1.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire1.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire1.keystore new file mode 100644 index 0000000..4f9120c Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire1.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire10.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire10.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire10.keystore new file mode 100644 index 0000000..0bd97d77 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire10.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire11.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire11.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire11.keystore new file mode 100644 index 0000000..62ae3c7 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire11.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire2.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire2.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire2.keystore new file mode 100644 index 0000000..c65bc81 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire2.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire3.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire3.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire3.keystore new file mode 100644 index 0000000..b0796e0 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire3.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire4.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire4.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire4.keystore new file mode 100644 index 0000000..9c94018 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire4.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire5.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire5.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire5.keystore new file mode 100644 index 0000000..33f6937 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire5.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire6.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire6.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire6.keystore new file mode 100644 index 0000000..568f674 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire6.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire7.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire7.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire7.keystore new file mode 100644 index 0000000..80e2d80 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire7.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire8.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire8.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire8.keystore new file mode 100644 index 0000000..a15def5 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire8.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire9.keystore ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire9.keystore b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire9.keystore new file mode 100644 index 0000000..72087f3 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/gemfire9.keystore differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/publickeyfile ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/publickeyfile b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/publickeyfile new file mode 100644 index 0000000..1b13872 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/ibm/publickeyfile differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/generator/keys/publickeyfile ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/generator/keys/publickeyfile b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/publickeyfile new file mode 100644 index 0000000..9c2daa3 Binary files /dev/null and b/geode-core/src/test/resources/org/apache/geode/security/generator/keys/publickeyfile differ http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/peerAuth.json ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/peerAuth.json b/geode-core/src/test/resources/org/apache/geode/security/peerAuth.json new file mode 100644 index 0000000..9bd8936 --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/peerAuth.json @@ -0,0 +1,36 @@ +{ + "users": [ + { + "name": "locator1", + "password": "1234567", + "roles": [ + ] + }, + { + "name": "server1", + "password": "1234567", + "roles": [ + ] + }, + { + "name": "server2", + "password": "1234567", + "roles": [ + ] + } + ] + +} + + + + + + + + + + + + + http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/templates/authz5_5.dtd ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/templates/authz5_5.dtd b/geode-core/src/test/resources/org/apache/geode/security/templates/authz5_5.dtd new file mode 100644 index 0000000..7080c0e --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/templates/authz5_5.dtd @@ -0,0 +1,105 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- +Licensed to the Apache Software Foundation (ASF) under one or more +contributor license agreements. See the NOTICE file distributed with +this work for additional information regarding copyright ownership. +The ASF licenses this file to You under the Apache License, Version 2.0 +(the "License"); you may not use this file except in compliance with +the License. You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +--> +<!-- + +This is the XML DTD for the GemFire sample XML based authorization callback +in com.gemstone.gemfire.security.templates.XmlAuthorization. + +All XMLs must include a DOCTYPE of the following form: + + <!DOCTYPE acl PUBLIC + "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "http://www.gemstone.com/dtd/authz5_5.dtd";> + +The contents of a declarative XML file correspond to APIs found in the + + com.gemstone.gemfire.security.AccessControl + +package. The sample implementation may be used to specify access control +policies. + +--> + +<!-- + +The following conventions apply to all GemFire sample authorization +XML file elements unless indicated otherwise. + +- In elements that contain PCDATA, leading and trailing whitespace in + the data may be ignored. + +- In elements whose value is an "enumerated type", the value is case + sensitive. + +--> + + +<!-- +The "acl" element is the root element of the authorization file. +This element contains the role to user mappings and role to permissions +mapping on a per region per operation basis. +--> + +<!ELEMENT acl (role+,permission+)> + +<!-- +The "role" element contains the set of users that have the permissions of +given role. A user can be present in more than one "role" elements in +which case the union of the permissions to all those roles determines +the full set of permissions to be given to the user. +--> + +<!ELEMENT role (user*)> +<!ATTLIST role + name CDATA #REQUIRED +> + +<!-- +The "user" element is contained within the "role" element and contains +the name of a user having the permissions of that role. +--> + +<!ELEMENT user (#PCDATA)> + +<!-- +The "permission" element specifies the list of operations that are allowed +for a particular role in the given regions as provided in the optional +"regions" attribute. The value of "regions" attribute should be a comma +separated list of region names for which permissions are to be provided. +If no "regions" attribute is provided then those permissions are provided +for all the other regions (i.e. other than those that have been explicitly +specified). Permissions for cache level operations REGION_DESTROY, +REGION_CREATE, QUERY and CQ operations should be specified with no "regions" +attribute. If cache-level permission is not provided for QUERY or CQ operations +then the permission for all the region names in the query string is checked. +--> + +<!ELEMENT permission (operation*)> +<!ATTLIST permission + role CDATA #REQUIRED + regions CDATA #IMPLIED +> + + +<!-- +The operation should be one of the following strings: + GET, PUT, PUTALL, DESTROY, REGISTER_INTEREST, UNREGISTER_INTEREST, + CONTAINS_KEY, KEY_SET, QUERY, EXECUTE_CQ, STOP_CQ, CLOSE_CQ, REGION_CLEAR, + REGION_CREATE, REGION_DESTROY +--> +<!ELEMENT operation (#PCDATA)> http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/9d7a6960/geode-core/src/test/resources/org/apache/geode/security/templates/authz6_0.dtd ---------------------------------------------------------------------- diff --git a/geode-core/src/test/resources/org/apache/geode/security/templates/authz6_0.dtd b/geode-core/src/test/resources/org/apache/geode/security/templates/authz6_0.dtd new file mode 100755 index 0000000..a77563a --- /dev/null +++ b/geode-core/src/test/resources/org/apache/geode/security/templates/authz6_0.dtd @@ -0,0 +1,110 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- +Licensed to the Apache Software Foundation (ASF) under one or more +contributor license agreements. See the NOTICE file distributed with +this work for additional information regarding copyright ownership. +The ASF licenses this file to You under the Apache License, Version 2.0 +(the "License"); you may not use this file except in compliance with +the License. You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +--> +<!-- + +This is the XML DTD for the GemFire sample XML based authorization callback +in com.gemstone.gemfire.security.templates.XmlAuthorization. + +All XMLs must include a DOCTYPE of the following form: + + <!DOCTYPE acl PUBLIC + "-//GemStone Systems, Inc.//GemFire XML Authorization 1.0//EN" + "http://www.gemstone.com/dtd/authz5_5.dtd";> + +The contents of a declarative XML file correspond to APIs found in the + + com.gemstone.gemfire.security.AccessControl + +package. The sample implementation may be used to specify access control +policies. + +--> + +<!-- + +The following conventions apply to all GemFire sample authorization +XML file elements unless indicated otherwise. + +- In elements that contain PCDATA, leading and trailing whitespace in + the data may be ignored. + +- In elements whose value is an "enumerated type", the value is case + sensitive. + +--> + + +<!-- +The "acl" element is the root element of the authorization file. +This element contains the role to user mappings and role to permissions +mapping on a per region per operation basis. +--> + +<!ELEMENT acl (role+,permission+)> + +<!-- +The "role" element contains the set of users that have the permissions of +given role. A user can be present in more than one "role" elements in +which case the union of the permissions to all those roles determines +the full set of permissions to be given to the user. +--> + +<!ELEMENT role (user*)> +<!ATTLIST role + name CDATA #REQUIRED +> + +<!-- +The "user" element is contained within the "role" element and contains +the name of a user having the permissions of that role. +--> + +<!ELEMENT user (#PCDATA)> + +<!-- +The "permission" element specifies the list of operations that are allowed +for a particular role in the given regions as provided in the optional +"regions" attribute. The value of "regions" attribute should be a comma +separated list of region names for which permissions are to be provided. +If no "regions" attribute is provided then those permissions are provided +for all the other regions (i.e. other than those that have been explicitly +specified). Permissions for cache level operations REGION_DESTROY, +REGION_CREATE, QUERY and CQ operations should be specified with no "regions" +attribute. If cache-level permission is not provided for QUERY or CQ operations +then the permission for all the region names in the query string is checked. +--> + +<!ELEMENT permission (operation*)> +<!ATTLIST permission + role CDATA #REQUIRED + regions CDATA #IMPLIED +> + + +<!-- +The operation should be one of the following strings: + GET, PUT, PUTALL, DESTROY, REGISTER_INTEREST, UNREGISTER_INTEREST, + CONTAINS_KEY, KEY_SET, QUERY, EXECUTE_CQ, STOP_CQ, CLOSE_CQ, REGION_CLEAR, + REGION_CREATE, REGION_DESTROY +--> +<!ELEMENT operation (#PCDATA)> +<!ATTLIST operation + functionIds CDATA #IMPLIED + optimizeForWrite CDATA #IMPLIED + keySet CDATA #IMPLIED +>
