| <?xml version="1.0" encoding="UTF-8"?> |
| <!-- |
| Licensed to the Apache Software Foundation (ASF) under one |
| or more contributor license agreements. See the NOTICE file |
| distributed with this work for additional information |
| regarding copyright ownership. The ASF licenses this file |
| to you under the Apache License, Version 2.0 (the |
| "License"); you may not use this file except in compliance |
| with the License. You may obtain a copy of the License at |
| |
| http://www.apache.org/licenses/LICENSE-2.0 |
| |
| Unless required by applicable law or agreed to in writing, |
| software distributed under the License is distributed on an |
| "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| KIND, either express or implied. See the License for the |
| specific language governing permissions and limitations |
| under the License. |
| --> |
| |
| <services xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" |
| xsi:noNamespaceSchemaLocation="http://ofbiz.apache.org/dtds/services.xsd"> |
| <description>OFBiz Security Services</description> |
| <vendor>OFBiz</vendor> |
| <version>1.0</version> |
| |
| <!-- SecurityGroup services --> |
| <service name="createSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="createSecurityGroup" auth="true"> |
| <description>Create an SecurityGroup</description> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="description" type="String" mode="IN" optional="false"/> |
| </service> |
| <service name="updateSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="updateSecurityGroup" auth="true"> |
| <description>Update a SecurityGroup</description> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="description" type="String" mode="IN" optional="false"/> |
| </service> |
| <!-- SecurityPermission services --> |
| <service name="createSecurityPermission" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="createSecurityPermission" auth="true"> |
| <description>Create a SecurityPermission</description> |
| <attribute name="permissionId" type="String" mode="IN" optional="false"/> |
| <attribute name="description" type="String" mode="IN" optional="false"/> |
| </service> |
| <service name="updateSecurityPermission" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="updateSecurityPermission" auth="true"> |
| <description>Update a SecurityPermission</description> |
| <attribute name="permissionId" type="String" mode="IN" optional="false"/> |
| <attribute name="description" type="String" mode="IN" optional="false"/> |
| </service> |
| |
| <!-- SecurityPermission to SecurityGroup services --> |
| <service name="addSecurityPermissionToSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="addSecurityPermissionToSecurityGroup" auth="true"> |
| <description>Add a SecurityPermission to a SecurityGroup</description> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="permissionId" type="String" mode="IN" optional="false"/> |
| </service> |
| <service name="removeSecurityPermissionFromSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="removeSecurityPermissionFromSecurityGroup" auth="true"> |
| <description>Remove a SecurityPermission from a SecurityGroup</description> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="permissionId" type="String" mode="IN" optional="false"/> |
| </service> |
| |
| <!-- UserLogin to SecurityGroup services --> |
| <service name="addUserLoginToSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="addUserLoginToSecurityGroup" auth="true"> |
| <description>Add a UserLogin to a SecurityGroup</description> |
| <attribute name="userLoginId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="fromDate" type="Timestamp" mode="IN" optional="true"/> |
| <attribute name="thruDate" type="Timestamp" mode="IN" optional="true"/> |
| </service> |
| <service name="updateUserLoginToSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="updateUserLoginToSecurityGroup" auth="true"> |
| <description>Update a UserLogin to SecurityGroup Appl</description> |
| <attribute name="userLoginId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="fromDate" type="Timestamp" mode="IN" optional="false"/> |
| <attribute name="thruDate" type="Timestamp" mode="IN" optional="true"/> |
| </service> |
| <service name="removeUserLoginFromSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="removeUserLoginFromSecurityGroup" auth="true"> |
| <description>Remove a UserLogin from a SecurityGroup</description> |
| <attribute name="userLoginId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="fromDate" type="Timestamp" mode="IN" optional="false"/> |
| </service> |
| |
| <!-- ProtectedView to SecurityGroup services --> |
| <service name="addProtectedViewToSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="addProtectedViewToSecurityGroup" auth="true"> |
| <description>Add a ProtectedView to a SecurityGroup</description> |
| <attribute name="viewNameId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="maxHits" type="Integer" mode="IN" optional="false"/> |
| <attribute name="maxHitsDuration" type="Long" mode="IN" optional="false"/> |
| <attribute name="tarpitDuration" type="Long" mode="IN" optional="false"/> |
| </service> |
| <service name="updateProtectedViewToSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="updateProtectedViewToSecurityGroup" auth="true"> |
| <description>Update a ProtectedView to SecurityGroup Appl</description> |
| <attribute name="viewNameId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| <attribute name="maxHits" type="Integer" mode="IN" optional="false"/> |
| <attribute name="maxHitsDuration" type="Long" mode="IN" optional="false"/> |
| <attribute name="tarpitDuration" type="Long" mode="IN" optional="false"/> |
| </service> |
| <service name="removeProtectedViewFromSecurityGroup" engine="simple" location="component://securityext/script/org/ofbiz/securityext/securitygroup/SecurityGroupServices.xml" invoke="removeProtectedViewFromSecurityGroup" auth="true"> |
| <description>Remove a ProtectedView from a SecurityGroup</description> |
| <attribute name="viewNameId" type="String" mode="IN" optional="false"/> |
| <attribute name="groupId" type="String" mode="IN" optional="false"/> |
| </service> |
| |
| <!-- certificate services --> |
| <service name="importIssuerProvision" engine="java" auth="true" |
| location="org.ofbiz.securityext.cert.CertificateServices" invoke="importIssuerCertificate"> |
| <description>Import an x.509 certificate into a defined keystore and create the provision data</description> |
| <permission-service service-name="securityPermissionCheck" main-action="CREATE"/> |
| <attribute name="componentName" type="String" mode="IN" optional="false"/> |
| <attribute name="keystoreName" type="String" mode="IN" optional="false"/> |
| <attribute name="certString" type="String" mode="IN" optional="false"/> |
| <attribute name="importIssuer" type="String" mode="IN" optional="true"/> |
| <attribute name="alias" type="String" mode="IN" optional="false"/> |
| </service> |
| |
| <!-- permission check --> |
| <service name="securityPermissionCheck" engine="simple" |
| location="component://common/script/org/ofbiz/common/permission/CommonPermissionServices.xml" invoke="genericBasePermissionCheck"> |
| <implements service="permissionInterface"/> |
| <attribute name="primaryPermission" type="String" mode="IN" optional="true" default-value="SECURITY"/> |
| </service> |
| |
| <!-- authorization dynamic access implementation API --> |
| <service name="dynamicAccessInterface" engine="interface"> |
| <description>Service interface for implementing Dynamic Access as a service</description> |
| <attribute name="userId" type="String" mode="IN" optional="false"/> |
| <attribute name="permission" type="String" mode="IN" optional="false"/> |
| <attribute name="accessString" type="String" mode="IN" optional="false"/> |
| <attribute name="permissionContext" type="Map" mode="IN" optional="true"/> |
| <attribute name="permissionGranted" type="Boolean" mode="OUT" optional="false"/> |
| </service> |
| |
| <!-- dynamic access test service --> |
| <service name="dynamicAccessTestService" engine="simple" auth="false" |
| location="component://securityext/testdef/da/DynamicAccessTest.xml" invoke="testDa"> |
| <implements service="dynamicAccessInterface"/> |
| </service> |
| <service name="dynamicAccessRecursiveTest" engine="simple" auth="false" |
| location="component://securityext/testdef/da/DynamicAccessTest.xml" invoke="testDaRecursion"> |
| <implements service="dynamicAccessInterface"/> |
| </service> |
| </services> |