It would be also great to be able to define a group of objects (for the XACML purposes) based on a value of metadata element in DC datastream. For example, apply XACML policy if dc.type = value1. Is it possible?
On Sat, Jun 23, 2012 at 2:39 AM, Serhiy Polyakov <sp0...@gmail.com> wrote: > Hello, > > I need to write custom repository-wide XACML policy to deny or permit > access to a group of objects with certain attributes. Group of object > is defined by the property set in RELS-EXT datastream of each object. > Specifically it is membership of object in a collection: > > <fedora:isMemberOfCollection rdf:resource="info:fedora/id:111"/> > > I used this guide > https://wiki.duraspace.org/display/FEDORA34/XACML+Policy+Enforcement > but still not sure how to define group of object condition. > > If somebody could point me to an example that would help. > > Thank you, > Serhiy ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Fedora-commons-users mailing list Fedora-commons-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fedora-commons-users
