xacml-users message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Réf. : Re: [xacml-users] Problem with an orfunction
- From: valerie.bauche@bull.net
- To: xacml-users@lists.oasis-open.org
- Date: Fri, 28 Jan 2011 15:43:17 +0100
Finally I tried to use a target like this :
<Target xmlns="urn:oasis:names:tc:xacml:1.0:policy">
<Subjects>
<Subject xmlns="urn:oasis:names:tc:xacml:1.0:policy">
<SubjectMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-less-than-or-equal" xmlns="urn:oasis:names:tc:xacml:1.0:policy">
<AttributeValue DataType="http://www.w3.org/2001/XMLSchema#string">10</AttributeValue>
<SubjectAttributeDesignator AttributeId="urn:oasis:names:tc:SAML:2.0:attrname-format:basic:profile1" DataType="http://www.w3.org/2001/XMLSchema#string"></SubjectAttributeDesignator>
</SubjectMatch>
</Subject>
<Subject xmlns="urn:oasis:names:tc:xacml:1.0:policy">
<SubjectMatch MatchId="urn:oasis:names:tc:xacml:1.0:function:string-less-than-or-equal" xmlns="urn:oasis:names:tc:xacml:1.0:policy">
<AttributeValue DataType="http://www.w3.org/2001/XMLSchema#string">10</AttributeValue>
<SubjectAttributeDesignator AttributeId="urn:oasis:names:tc:SAML:2.0:attrname-format:basic:profile2" DataType="http://www.w3.org/2001/XMLSchema#string"></SubjectAttributeDesignator>
</SubjectMatch>
</Subject>
</Subjects>
<Resources><AnyResource xmlns=""></AnyResource></Resources>
<Actions><AnyAction xmlns=""></AnyAction></Actions>
</Target>
And it seems to work !
One thing I don't understand is why I have to use a "less-than" function in the target while I used a "greater-than" in the condition.....
Valérie
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]