xacml:PolicySet
Element information
Namespace: urn:oasis:names:tc:xacml:2.0:policy:schema:os
Schema document: access_control-xacml-2.0-policy-schema-os.xsd
Type: xacml:PolicySetType
Properties: Global, Qualified
Content
- Sequence [1..1]
Attributes
| Name | Occ | Type | Description | Notes |
|---|---|---|---|---|
| PolicySetId | [1..1] | xsd:anyURI | ||
| Version | [0..1] | xacml:VersionType | Default value is "1.0". | |
| PolicyCombiningAlgId | [1..1] | xsd:anyURI |
Used in
- Type xacml:PolicySetType (Element xacml:PolicySet)
Sample instance
<PolicySet xsi:schemaLocation="urn:oasis:names:tc:xacml:2.0:policy:schema:os http://docs.oasis-open.org/xacml/access_control-xacml-2.0-policy-schema-os.xsd" PolicySetId="urn:oasis:names:tc:xacml:2.0:example:policysetid:1" PolicyCombiningAlgId="urn:oasis:names:tc:xacml:1.0: policy-combining-algorithm:deny-overrides"> <Description> Example policy set. </Description> <Target> <Resources> <Resource> <ResourceMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-equal"> <AttributeValue DataType="http://www.w3.org/2001/XMLSchema#string"> urn:med:example:schema:records </AttributeValue> <ResourceAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:1.0:resource:target-namespace" DataType="http://www.w3.org/2001/XMLSchema#string"/> </ResourceMatch> </Resource> </Resources> </Target> <PolicyIdReference> urn:oasis:names:tc:xacml:2.0:example:policyid:3 </PolicyIdReference> <Policy PolicyId="urn:oasis:names:tc:xacml:2.0:example:policyid:2" RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:deny-overrides"> <Description> Policy for any medical record in the http://www.med.example.com/schemas/record.xsd namespace </Description> <Target/> <Rule RuleId="urn:oasis:names:tc:xacml:2.0:example:ruleid:1" Effect="Permit"/> <Rule RuleId="urn:oasis:names:tc:xacml:2.0:example:ruleid:2" Effect="Permit"/> <Rule RuleId="urn:oasis:names:tc:xacml:2.0:example:ruleid:4" Effect="Deny"/> </Policy> </PolicySet>