[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: RE: [xacml] AA02: New section in Appendix A on Structured datatypes
On 11 October, Daniel Engovatov writes: RE: [xacml] AA02: New section in Appendix A on Structured datatypes
> How can <AttributeValue dataType="ds:KeyInfo"> with required attribute used
> as an xs:string? Is not it a type error? Would be the syntax for such
> <apply>?
Declare the DataType as xs:string, not ds:KeyInfo. This is not
very workable, since there must be an EXACT string equality, or
else a very complex regular expression, used in the Policy. But,
as I said, in some cases this might work.
Example:
Request:
<Subject>
<Attribute
AttributeId="urn:oasis:names:tc:xacml:1.0:subject:key-info"
DataType="xs:string">
<AttributeValue><ds:KeyName>jhibbert-key</ds:KeyName></AttributeValue>
</Attribute>
</Subject>
Policy:
<Target>
<Subjects>
<Subject>
<SubjectMatch
MatchId="function:string-match">
<SubjectAttributeDesignator
AttributeId="urn:oasis:names:tc:xacml:1.0:subject:key-info"
DataType="xs:string"/>
<AttributeValue
DataType="xs:string"><ds:KeyName>jhibbert-key</ds:KeyName></AttributeValue>
</SubjectMatch>
</Subject>
</Subjects>
....
--
Anne H. Anderson Email: Anne.Anderson@Sun.COM
Sun Microsystems Laboratories
1 Network Drive,UBUR02-311 Tel: 781/442-0928
Burlington, MA 01803-0902 USA Fax: 781/442-1692
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC