3 Structure Examples
The following is an example of an AzMan XML policy file:
-
<?xml version="1.0" encoding="utf-8"?> <AzAdminManager MajorVersion="2" MinorVersion="0" Guid="c5217693-1a84-48ee-a9ae-65f0e10bd314" Description="This is the description"> <AzApplication Guid="f6ae8a28-57c3-4db8-9b7f-848aec862518" Name="Application#1" Description="Application#1-Desc" ApplicationVersion="Application#1-Version"> <AzApplicationGroup Guid="3736a1f3-3f3d-44f7-9fa4-eb6f9032e962" Name="App Group #1 - Basic" Description="App Group #1 Description - Basic " GroupType="Basic"> <BizRuleLanguage></BizRuleLanguage> <Member>S-1-5-21-3104031619-1062013444-2593988815-1115</Member> <Member>S-1-5-21-3104031619-1062013444-2593988815-1118</Member> <NonMember>S-1-5-21-3104031619-1062013444-2593988815-1116</NonMember> <NonMember>S-1-5-21-3104031619-1062013444-2593988815-1119</NonMember> <AppMemberLink>2db22bd5-4395-4645-9950-5509eb9d83b1</AppMemberLink> </AzApplicationGroup> <AzApplicationGroup Guid="f5fd6ac2-d435-4c51-8a9b-646d627ae448" Name="App Group #3 - Biz Rule" Description="App Group #3 Desc - Biz Rule" GroupType="Bizrule"> <BizRuleLanguage>JScript</BizRuleLanguage> <BizRule> AzBizRuleContext.BusinessRuleResult = false; dt = new Date(); hour = dt.getHours(); if (hour > 9 && hour < 17) { AzBizRuleContext.BusinessRuleResult = true; } </BizRule> <BizRuleImportedPath>C:\Users\Administrator\Desktop\bizrule1.js</BizRuleImportedPath> </AzApplicationGroup> <AzTask Guid="82a494ed-dec3-4ae9-92a1-1d9e5fe436b1" Name="Role Definition #1" Description="Desc - Role Definition #1" BizRuleImportedPath="" RoleDefinition="True"> <TaskLink>26834981-a122-4fd1-9f00-8ff2b63f7f49</TaskLink> </AzTask> <AzOperation Guid="8f274e4c-3f73-4b56-85ee-df83df9d313a" Name="Operation #1" Description="Desc - Operation #1"> <OperationID>1</OperationID> </AzOperation> <AzOperation Guid="943864c8-869f-4ef4-9c84-e51fc380bb99" Name="Operation #2" Description="Desc - Operation #2"> <OperationID>2</OperationID> </AzOperation> <AzTask Guid="26834981-a122-4fd1-9f00-8ff2b63f7f49" Name="Task #1" Description="Desc - Task #1" BizRuleImportedPath=""> <OperationLink>8f274e4c-3f73-4b56-85ee-df83df9d313a</OperationLink> <OperationLink>943864c8-869f-4ef4-9c84-e51fc380bb99</OperationLink> </AzTask> <AzRole Guid="831d638d-9f9e-4883-a024-360f82afc705" Name="Role Assignment #1" Description="Role Assignment #1"> <TaskLink>82a494ed-dec3-4ae9-92a1-1d9e5fe436b1</TaskLink> <Member>S-1-5-21-1022818538-2633080746-2542160322-501</Member> <AppMemberLink>3736a1f3-3f3d-44f7-9fa4-eb6f9032e962</AppMemberLink> <AppMemberLink>99f5aabc-3c3a-47a8-8b0a-d5aa373c33e4</AppMemberLink> </AzRole> <AzApplicationGroup Guid="2ebce7bb-d172-46a8-8844-c1d7638103dd" Name="App Group #2 - Ldap Query Group" Description="App Group #2 - Ldap Query Group" GroupType="LdapQuery"> <BizRuleLanguage></BizRuleLanguage> <LdapQuery>(&(objectCategory=person)(objectClass=user)(cn=david mowers))</LdapQuery> </AzApplicationGroup> <AzApplicationGroup Guid="ab24f52f-ab12-43ff-818d-e6de1492acbf" Name="App Group #4 - Biz Rule VBS" Description="App Group #4 - Biz Rule VBS" GroupType="Bizrule"> <BizRuleLanguage>VBScript</BizRuleLanguage> <BizRule> AzBizRuleContext.BusinessRuleResult = FALSE Dim Amount Amount = AzBizRuleContext.GetParameter("Age") if Amount > 25 then AzBizRuleContext.BusinessRuleResult = TRUE </BizRule> <BizRuleImportedPath>C:\Users\Administrator\Desktop\bizrule2.vbs</BizRuleImportedPath> </AzApplicationGroup> </AzApplication> <AzApplicationGroup Guid="99f5aabc-3c3a-47a8-8b0a-d5aa373c33e4" Name="AzMan Global Group#1 Basic Application Group" Description="AzMan Global Group#1-Desc" GroupType="Basic"> <BizRuleLanguage></BizRuleLanguage> </AzApplicationGroup> <AzApplicationGroup Guid="2db22bd5-4395-4645-9950-5509eb9d83b1" Name="AzMan Global Group#2 LDAP Query Application Group" Description="AzMan Global Group#2-Desc" GroupType="LdapQuery"> <BizRuleLanguage></BizRuleLanguage> <LdapQuery>This is the query</LdapQuery> </AzApplicationGroup> <AzApplicationGroup Guid="f2f3e0f1-4334-4736-b27d-b996240714ae" Name="AzMan Global Group#3 Business Rule Application Group" Description="AzMan Global Group#3-Desc" GroupType="Bizrule"> <BizRuleLanguage>VBScript</BizRuleLanguage> </AzApplicationGroup> </AzAdminManager>