Skip to content

Commit

Permalink
Security groups should be under app:$APP:etc.
Browse files Browse the repository at this point in the history
  • Loading branch information
Carl Waldbieser committed Sep 29, 2018
1 parent 6ba06ce commit f8d35f5
Show file tree
Hide file tree
Showing 2 changed files with 15 additions and 14 deletions.
21 changes: 11 additions & 10 deletions ex401/ex401.2.8/container_files/seed-data/bootstrap.gsh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,17 +4,18 @@ addGroup("app:mfa", "mfa_required", "mfa_required");
addGroup("app:mfa:ref", "mfa_opt_in", "mfa_opt_in");
addMember("app:mfa:mfa_enabled_allow", "app:mfa:ref:mfa_opt_in");

addGroup("app:mfa:ref", "mfa_opt_in_access", "mfa_opt_in_access");
addGroup("app:mfa:ref", "mfa_opt_in_access_allow", "mfa_opt_in_access_allow");
addGroup("app:mfa:ref", "mfa_opt_in_access_deny", "mfa_opt_in_access_deny");
addStem("app:mfa", "etc", "etc")
addGroup("app:mfa:etc", "mfa_opt_in_access", "mfa_opt_in_access");
addGroup("app:mfa:etc", "mfa_opt_in_access_allow", "mfa_opt_in_access_allow");
addGroup("app:mfa:etc", "mfa_opt_in_access_deny", "mfa_opt_in_access_deny");

addComposite("app:mfa:ref:mfa_opt_in_access", CompositeType.COMPLEMENT, "app:mfa:ref:mfa_opt_in_access_allow", "app:mfa:ref:mfa_opt_in_access_deny");
addComposite("app:mfa:etc:mfa_opt_in_access", CompositeType.COMPLEMENT, "app:mfa:etc:mfa_opt_in_access_allow", "app:mfa:etc:mfa_opt_in_access_deny");

addMember("app:mfa:ref:mfa_opt_in_access_allow", "ref:faculty");
addMember("app:mfa:ref:mfa_opt_in_access_allow", "ref:staff");
addMember("app:mfa:ref:mfa_opt_in_access_allow", "ref:student");
addMember("app:mfa:etc:mfa_opt_in_access_allow", "ref:faculty");
addMember("app:mfa:etc:mfa_opt_in_access_allow", "ref:staff");
addMember("app:mfa:etc:mfa_opt_in_access_allow", "ref:student");

addMember("app:mfa:ref:mfa_opt_in_access_deny", "app:mfa:mfa_required");
addMember("app:mfa:etc:mfa_opt_in_access_deny", "app:mfa:mfa_required");

grantPriv("app:mfa:ref:mfa_opt_in", "app:mfa:ref:mfa_opt_in_access", AccessPrivilege.OPTIN);
grantPriv("app:mfa:ref:mfa_opt_in", "app:mfa:ref:mfa_opt_in_access", AccessPrivilege.OPTOUT);
grantPriv("app:mfa:ref:mfa_opt_in", "app:mfa:etc:mfa_opt_in_access", AccessPrivilege.OPTIN);
grantPriv("app:mfa:ref:mfa_opt_in", "app:mfa:etc:mfa_opt_in_access", AccessPrivilege.OPTOUT);
8 changes: 4 additions & 4 deletions ex401/ex401.2.end/container_files/seed-data/bootstrap.gsh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,11 +5,11 @@ addMember("app:mfa:mfa_enabled_allow", "ref:staff");
addMember("app:mfa:mfa_enabled_allow", "ref:student");

delGroup("app:mfa:ref:pilot");
delGroup("app:mfa:ref:mfa_opt_in_access");
delGroup("app:mfa:ref:mfa_opt_in_access_allow");
delGroup("app:mfa:ref:mfa_opt_in_access_deny");
delGroup("app:mfa:etc:mfa_opt_in_access");
delGroup("app:mfa:etc:mfa_opt_in_access_allow");
delGroup("app:mfa:etc:mfa_opt_in_access_deny");
delGroup("app:mfa:ref:mfa_opt_in");
delGroup("app:mfa:ref:bypass-not-opt-in");
delGroup("app:mfa:ref:BannerUsersMinusFaculty");
delGroup("app:mfa:ref:NonFacultyBannerINB");
delGroup("app:mfa:ref:athletics_dept");
delGroup("app:mfa:ref:athletics_dept");

0 comments on commit f8d35f5

Please sign in to comment.