Schema Central > XACML 2.0 > access_control-xacml-2.0-policy-schema-os.xsd > xacml:Rule
Advanced search
Need SOA Help?

Recommended Reading:

Web Service Contract Design and Versioning for SOA

 

Definitive XML Schema

 

xacml:Rule

Element information

Namespace: urn:oasis:names:tc:xacml:2.0:policy:schema:os

Schema document: access_control-xacml-2.0-policy-schema-os.xsd

Type: xacml:RuleType

Properties: Global, Qualified

Content

Attributes

NameOccTypeDescriptionNotes
RuleId [1..1]xsd:string
Effect [1..1]xacml:EffectType

Used in

Sample instance

<Rule      RuleId="urn:oasis:names:tc:xacml:2.0:example:SimpleRule1"
      Effect="Permit">
   <Description>
   Any subject with an e-mail name in the med.example.com domain
   can perform any action on any resource.
  		</Description>
   <Target>
      <Subjects>
         <Subject>
            <SubjectMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:rfc822Name-match">
               <AttributeValue DataType="urn:oasis:names:tc:xacml:1.0:data-type:rfc822Name">
       med.example.com
      						</AttributeValue>
               <SubjectAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:1.0:subject:subject-id"
                                           DataType="urn:oasis:names:tc:xacml:1.0:data-type:rfc822Name"/>
            </SubjectMatch>
         </Subject>
      </Subjects>
   </Target>
</Rule>

Schema contents and descriptions Copyright (c) Organization for the Advancement of Structured Information Standards (OASIS).

Site developed and hosted by Datypic, Inc.

Please report errors or comments about this site to pwalmsley@datypic.com