File tree Expand file tree Collapse file tree 2 files changed +3
-3
lines changed
example/plugins/microservices
src/satosa/micro_services Expand file tree Collapse file tree 2 files changed +3
-3
lines changed Original file line number Diff line number Diff line change 4
4
attribute_allow:
5
5
target_provider1:
6
6
requester1:
7
- attr1:
7
+ attr1:
8
8
- "^foo:bar$"
9
9
- "^kaka$"
10
10
default:
Original file line number Diff line number Diff line change @@ -40,10 +40,10 @@ class AttributeAuthorization(ResponseMicroService):
40
40
41
41
The use of "" and 'default' is synonymous. Attribute rules are not overloaded
42
42
or inherited. For instance a response from "provider2" would only be allowed
43
- through if the eppn attribute had all values containing an '@' (something
43
+ through if the eppn attribute had all values containing an '@' (something
44
44
perhaps best implemented via an allow rule in practice). Responses from
45
45
target_provider1 bound for requester1 would be allowed through only if attr1
46
- contained foo:bar or kaka. Note that attribute filters (the leaves of the
46
+ contained foo:bar or kaka. Note that attribute filters (the leaves of the
47
47
structure above) are ORed together - i.e any attribute match is sufficient.
48
48
"""
49
49
You can’t perform that action at this time.
0 commit comments