How can I write ALFA policies which allow delegation of certain actions on certain resources? In XACML these are called Administrative policies.
(As described in http://docs.oasis-open.org/xacml/3.0/xacml-3.0-administration-v1-spec-en.html)
Asked
Active
Viewed 61 times
1 Answers
0
Short answer: you cannot.
Because the ALFA language does not let you set a PolicyIssuer, you cannot write delegation policies.
You could write standard policies in ALFA and then write a script that would insert the PolicyIssuer element.
This is similar to the question asked here: How to use "issuer" tag in ALFA plugin?
Community
- 1
- 1
David Brossard
- 13,584
- 6
- 55
- 88
-
Is there any updates on Delegation of Authority rules writing using ALFA if so can you provide a sample @David – Milson Jul 29 '16 at 00:32