To Add a New Policy Enabled Service

1. Develop the new service in an XML file based on the sms.dtd.

   amWebAgent.xml is the XML service file for the URL Policy Agent service and can be used as a template to create a policy-enabled service file. It is located in the templates directory of the exploded opensso.zip. Here is another sample template.

   <?xml version="1.0" encoding="ISO-8859-1"?>
   
   <!--
   Copyright (c) 2005 Sun Microsystems, Inc. All rights reserved
   Use is subject to license terms.
   -->
   
   
   
   
   <!DOCTYPE ServicesConfiguration
     PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
     "jar://com/sun/identity/sm/sms.dtd">
   
   <ServicesConfiguration>
     <Service name="SampleWebService" version="1.0">
        <Schema 
           i18nFileName="SampleWebService" 
           i18nKey="SampleWebService">
   
     <Policy>
   	<AttributeSchema name="GET"
             type="single"
             syntax="boolean"
             uitype="radio"
             i18nKey="get">
               <IsResourceNameAllowed/>
                  <BooleanValues>
                    <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
                    <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
                  </BooleanValues>
   	</AttributeSchema>
   
   	<AttributeSchema name="POST"
   	      type="single"
           syntax="boolean"
           uitype="radio"
   		    i18nKey="post">
   		      <IsResourceNameAllowed/>
                <BooleanValues>
                   <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
                   <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
                </BooleanValues>
   	</AttributeSchema>
   
   	<AttributeSchema name="PUT"
   		    type="single"
           syntax="boolean"
           uitype="radio"
   		    i18nKey="put">
   		      <IsResourceNameAllowed/>
                <BooleanValues>
                   <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
                   <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
                </BooleanValues>
   	</AttributeSchema>
   
   	<AttributeSchema name="DELETE"
   		    type="single"
           syntax="boolean"
           uitype="radio"
   		    i18nKey="delete">
   		      <IsResourceNameAllowed/>
                <BooleanValues>
                   <BooleanTrueValue i18nKey="allow">allow</BooleanTrueValue>
                   <BooleanFalseValue i18nKey="deny">deny</BooleanFalseValue>
                </BooleanValues>
   	</AttributeSchema>
   
       </Policy>
       </Schema>
     </Service>
   </ServicesConfiguration>

2. Save the XML file to the /config/xml/ directory of the exploded opensso.zip.

   For example, /config/xml/newServiceWithPolicy.xml

3. Load /config/xml/newServiceWithPolicy.xml using the ssoadm command line utility.

   See Chapter 1, ssoadm Command Line Interface Reference, in Sun OpenSSO Enterprise 8.0 Administration Reference for more information.

4. Define policy to protect the resource as documented in Creating Policies and Referrals.