OASIS eXtensible Access Control Markup Language (XACML) TC

 View Only
Back to discussions
Expand all | Collapse all

Re: [xacml] URL match function

  • 1.  Re: [xacml] URL match function

    Posted 05-17-2004 19:35 
     MHonArc v2.5.0b2 -->


















    xacml message
    







    [Date Prev]
 | [Thread Prev]
 | [Thread Next]
 | [Date Next]

--

[Date Index]
 | [Thread Index]
 | [List Home]
    


    







    Subject: Re: [xacml] URL match function
    







    



    On Mon, 17 May 2004, Tim Moses wrote:

> Colleagues - Here is a draft of the proposed URL-match function (with help
> from JSR 115).  All the best.  Tim.
>
> urn:oasis:names:tc:xacml:2.0:function:url-match
>
> This function takes two arguments of type
> http://www.w3.org/2001/XMLSchema#anyURI and SHALL return an
> http://www.w3.org/2001/XMLSchema#boolean.

Q: Is "http://foo.com/*"; a valid URI?

-Polar


>  It SHALL return "True" if all of
> the following conditions hold.  Otherwise, it SHALL return "False".
>
> 1.	The scheme part of both arguments SHALL be the same and SHALL be
> either "http", "https" or "file".  The scheme parts MAY be compared using
> urn:oasis:names:tc:xacml:1.0:function:string-equal, once both parts have
> been normalized to upper-case.
> 2.	The authority part of the first argument SHALL match the authority
> part of the second argument by either
> urn:oasis:names:tc:xacml:2.0:function:ipAddress-match or
> urn:oasis:names:tc:xacml:2.0:function:dnsName-match.
> 3.	The path part of the first argument SHALL match the path part of the
> second argument in at least one of the following ways.
> 3a	The path part of the first argument matches the path part of the
> second argument by urn:oasis:names:tc:xacml:1.0:function:string-equal.
> 3b	The path part of the first argument is the string "/*".
> 3c	The path part of the first argument starts with "/" and ends with
> "/*" and the path part of the second argument starts with the same string as
> the path part of the first argument, minus its last 2 characters, and the
> next character of the path part of the second argument, if present, is "/".
> 3d	The path part of the first argument starts with "*." and the path
> part of the second argument ends with the same string as the path part of
> the first argument, minus its first 2 characters.
> 3e	The path part of the first argument is the special string, "/",
> which matches all other paths.
>
>
> -----------------------------------------------------------------
> Tim Moses
> 613.270.3183
>
> To unsubscribe from this mailing list (and be removed from the roster of the OASIS TC), go to http://www.oasis-open.org/apps/org/workgroup/xacml/members/leave_workgroup.php.
>

    





    








    


    [Date Prev]
 | [Thread Prev]
 | [Thread Next]
 | [Date Next]

--

[Date Index]
 | [Thread Index]
 | [List Home]


Related Content