amDelegation.xml revision e6763c944efa6148904c11b270b0e5efbe823412
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major<?xml version="1.0" encoding="ISO-8859-1"?>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major<!--
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major The contents of this file are subject to the terms
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major of the Common Development and Distribution License
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major (the License). You may not use this file except in
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major compliance with the License.
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major You can obtain a copy of the License at
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major https://opensso.dev.java.net/public/CDDLv1.0.html or
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major opensso/legal/CDDLv1.0.txt
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major See the License for the specific language governing
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major permission and limitations under the License.
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major When distributing Covered Code, include this CDDL
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major Header Notice in each file and include the License file
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major at opensso/legal/CDDLv1.0.txt.
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major If applicable, add the following below the CDDL Header,
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major with the fields enclosed by brackets [] replaced by
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major your own identifying information:
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major "Portions Copyrighted [year] [name of copyright owner]"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major $Id: amDelegation.xml,v 1.15 2009/12/21 22:02:42 veiming Exp $
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major Portions copyright 2014-2015 ForgeRock AS.
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major-->
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major<!DOCTYPE ServicesConfiguration
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major "jar://com/sun/identity/sm/sms.dtd">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major<ServicesConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Service name="sunAMDelegationService" version="1.0">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Schema
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nFileName="amDelegation"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major revisionNumber="30"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Global>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="SubjectIdTypes"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major type="list"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major syntax="string"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <DefaultValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ROLE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>GROUP</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>FILTEREDROLE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </DefaultValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Permissions">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Permission" inheritance="multiple">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Privileges">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Privilege" inheritance="multiple">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="defaultSubjectInLegacyMode" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </Global>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Organization>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Permissions">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Permission" inheritance="multiple">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Privileges">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubSchema name="Privilege" inheritance="multiple">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="defaultSubjectInLegacyMode" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </Organization>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Policy>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="READ"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major type="single"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major syntax="boolean"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major uitype="radio"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="READ">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <IsResourceNameAllowed/>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="MODIFY"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major type="single"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major syntax="boolean"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major uitype="radio"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="MODIFY">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <IsResourceNameAllowed/>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeSchema name="DELEGATE"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major type="single"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major syntax="boolean"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major uitype="radio"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="DELEGATE">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <IsResourceNameAllowed/>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </BooleanValues>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeSchema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </Policy>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <PluginInterface
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major name="DelegationInterface"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major interface= "com.sun.identity.delegation.interfaces.DelegationInterface"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="sun-am-delegation-interface-name" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </Schema>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <PluginSchema
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major name="DelegationPolicyImpl"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major interfaceName= "DelegationInterface"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major className= "com.sun.identity.delegation.plugins.DelegationPolicyImpl"
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major i18nKey="sun-am-delegation-policyimpl-name" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Configuration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <GlobalConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="Permissions">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="RealmAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DELEGATE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PolicyAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/iPlanetAMPolicy*Service/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DELEGATE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="RealmReadOnly" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunAMRealmService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="DatastoresReadOnly" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunIdentityRepositoryService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="LogWrite" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*@SM_CONFIG_ROOT_SUFFIX@/iPlanetAMLoggingService/1.0/application/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="LogRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*@SM_CONFIG_ROOT_SUFFIX@/iPlanetAMLoggingService/1.0/application/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="AgentsReadWrite" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunIdentityRepositoryService/1.0/application/agent*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DELEGATE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SAML2Admin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunFMSAML2MetadataService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="IDFFAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunFMIDFFMetadataService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="WSFederationAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunFMWSFederationMetadataService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="COTAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunFMCOTConfigService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementAdmin" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>*REALM/sunEntitlementService/*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DELEGATE</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTDecision" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/decision</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTDecisions" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/decisions</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTEntitlement" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/entitlement</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTEntitlements" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/entitlements</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTPrivilegeWrite" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/privilege*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRESTPrivilegeRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/sunEntitlementService/1.0/application/ws/1/entitlement/privilege*</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="RealmResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/realms/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PolicyResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/policies/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PolicyResourceModify" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/policies/modify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PolicyResourceEvaluate" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/policies/evaluate</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ReferralsResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/referrals/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ReferralsResourceModify" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/referrals/modify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/applications/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationResourceModify" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/applications/modify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ResourceTypeResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/resourcetypes/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ResourceTypeResourceModify" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/resourcetypes/modify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationTypesResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/applicationtypes/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ConditionTypesResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/conditiontypes/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SubjectTypesResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/subjecttypes/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SubjectAttributesResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/subjectattributes/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="DecisionCombinersResourceRead" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>@SM_CONFIG_ROOT_SUFFIX@/rest/1.0/decisioncombiners/read</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SessionPropertiesGetProperty" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/sessions/getProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SessionPropertiesGetPropertyNames" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/sessions/getPropertyNames</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SessionPropertiesDeleteProperty" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/sessions/deleteProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SessionPropertiesSetProperty" id="Permission">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="resource" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>REALM/rest/1.0/sessions/setProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="actions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>READ</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>MODIFY</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="Privileges">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="RealmAdmin" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="defaultSubjectInLegacyMode" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>id=Organization Admin Role,ou=role,REALM,amsdkdn=cn=Organization Admin Role,REALM</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="LogAdmin" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>LogWrite</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>LogRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="LogRead" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>LogRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="LogWrite" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>LogWrite</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="AgentAdmin" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmReadOnly</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>AgentsReadWrite</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTDecision</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTDecisions</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTEntitlement</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTEntitlements</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="FederationAdmin" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>COTAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>IDFFAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SAML2Admin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>WSFederationAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="RealmReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmReadOnly</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PolicyAdmin" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementAdmin</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmReadOnly</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>RealmResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DatastoresReadOnly</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ReferralsResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ReferralsResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ResourceTypeResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ResourceTypeResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SubjectTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ConditionTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>DecisionCombinersResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SubjectAttributesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SessionPropertiesGetProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SessionPropertiesSetProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SessionPropertiesDeleteProperty</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SessionPropertiesGetPropertyNames</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="defaultSubjectInLegacyMode" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>id=Organization Policy Admin Role,ou=role,REALM,amsdkdn=cn=Organization Policy Admin Role,REALM</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="EntitlementRestAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTDecision</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTDecisions</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTEntitlement</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTEntitlements</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyResourceEvaluate</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PrivilegeRestReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTPrivilegeRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="PrivilegeRestAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>EntitlementRESTPrivilegeWrite</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>PolicyResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ReferralsReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ReferralsResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ReferralsModifyAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ReferralsResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationModifyAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ResourceTypeReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ResourceTypeResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ResourceTypeModifyAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ResourceTypeResourceModify</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ApplicationTypesReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ApplicationTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="ConditionTypesReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>ConditionTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="SubjectTypesReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Value>SubjectTypesResourceRead</Value>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major </SubConfiguration>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <SubConfiguration name="DecisionCombinersReadAccess" id="Privilege">
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <AttributeValuePair>
fb379c70e3fd8a537f311b99be4759ae41e02750Peter Major <Attribute name="listOfPermissions" />
<Value>DecisionCombinersResourceRead</Value>
</AttributeValuePair>
</SubConfiguration>
<SubConfiguration name="SubjectAttributesReadAccess" id="Privilege">
<AttributeValuePair>
<Attribute name="listOfPermissions" />
<Value>SubjectAttributesResourceRead</Value>
</AttributeValuePair>
</SubConfiguration>
<SubConfiguration name="SessionPropertyModifyAccess" id="Privilege">
<AttributeValuePair>
<Attribute name="listOfPermissions" />
<Value>SessionPropertiesGetProperty</Value>
<Value>SessionPropertiesGetPropertyNames</Value>
<Value>SessionPropertiesDeleteProperty</Value>
<Value>SessionPropertiesSetProperty</Value>
</AttributeValuePair>
</SubConfiguration>
</SubConfiguration>
</GlobalConfiguration>
<OrganizationConfiguration name="/">
<!-- Create empty organization configuration for
management of delegation policies -->
</OrganizationConfiguration>
</Configuration>
</Service>
</ServicesConfiguration>