Policy Managers Guide
Virtual Resources
Resource Attributes
Actions and Action Groups
Groups
Users
Identity Attributes
Role Mapping Policies
Authorization Policies
Role Mapping Policy Reports
Authorization Policy Reports
Distributing SSM Configurations
Distributing Policies
Comparison Operators
Regular Expressions
Backslash (\)
Period (.)
Brackets ([])
Dash (-)
Caret (^)
Parentheses (( )) and OR character ( | )
Asterisk (*)
Plus (+)
Question Mark (?)
Others
Constraint Sets
String Comparisons
Boolean Operators
Associativity and Precedence
Grouping with Parentheses
Boolean Operators and Constraint Sets
Constant Declarations
Simple Constant
Constants List
Attribute Declarations
Resource Attributes
Identity Attributes
Static Attributes
Dynamic Attributes
Time and Date Attributes
Request Attributes
Evaluation Function Declarations
Group Inheritance
Direct and Indirect Group Membership
Restricting Policy Inheritance
Resource Attribute Inheritance
Root Node
Application Deployment Parent Node
Application Node
Resource Type Node
Resource Parent Node
Resource Node
EJB Resource Path Example
EJB Resource action Mappings
EJB Resource Dynamic Resource Attributes
JNDI Resource Path Example
JNDI Resource Action Mappings
JNDI Dynamic Resource Attributes
JNDI Resource Policy Examples
URL Resource Path Example
URL Resource Action Mappings
URL Dynamic Resource Attributes
HTTP Request Context Elements
Servlet Attributes
URL Query Strings
HTTP Request Headers
Cookies
URL Resource Policy Examples
JDBC Resource Path Example
JDBC Resource Action Mappings
JDBC Resource Path Example
JDBC Dynamic Resource Attributes
JDBC Resource Policy Examples
JMS Resource Path Example
JMS Resource Action Mappings
JMS Resource Example
JMS Dynamic Resource Attributes
JMS Resource Policy Examples
Web Services Resource Path Example
Web Services Resource Action Mappings
Web Services Resource Policy Examples
Web Services Dynamic Resource Attributes
Web Services Resource Policy Examples
Server Resource Path Example
Server Resource Actions Mapping
Server Dynamic Resource Attributes
Server Resource Policy Examples
Fully Qualified Names
Policy Element Qualifiers
Size Restriction on Policy Data
Character Restrictions in Policy Data
Data Normalization
Directory Names
Logical Name
Declaration Names
Special Names and Abbreviations
Application Bindings [binding]
Attribute [attr]
Declarations [dec]
Directories [dir]
Directory Attribute Schemas [schema]
Mutually Exclusive Subject Groups [excl]
Resources [object]
Resource Attributes [object]
Policy Distribution [distribution]
Policy Inquiry [piquery]
Policy Verification [pvquery]
Actions [priv]
Action Bindings [privbinding]
Action Groups [privgrp]
Role [role]
Rule [rule]
Distribution Targets
Subject Group Membership [member]
Subjects [subject]
Setting Configuration Parameters
Username and Password
Policy Import Parameters
Sample Configuration File