The service I am working on communicates with one or more external systems. I have a property group per external system with which I communicate, and would like to be able to dynamically add more such property groups.
I can specify the modify_authorization for an existing property group to allow a user to add/remove properties, and a user with solaris.smf.modify.application authorization can add application type property groups to any service. However, is there a way to allow a user to add application type property groups to a specific service/instance only? eg a service specific version of solaris.smf.modify.application that I can specify in my manifest and grant in my RBAC profile, such that a user can create new property groups in my service/instance only. Thanks Joyce
