Examples from section 3.
I made a number of small changes to policy-16f and
context 16f
which I did not publish yet. Those are typo's,
unused elements, optional-required attrs, etc.
One improvement is <PolicyIdReference> and
<PolicySetIdReference>
elements. I will publish my changes.
So if you'll try to validate examples against 16f
it will not work.
I also made small changes to medical record
instance in that I assumed there
is and /primaryCarePhysician/physicianId element. I
do not think it is possible to
match authenticated subject id with name in the
document.
A note on examples.
These examples are motivated by the xml document
protection use case.
Resource model selected is dom, and expression over
this model is
xpath. In previous versions of examples regular
expression was used
to match resource, and xpath expression was used in
condition.
Resource matching function is
function:node-match(xpath-req, xpath-rule)
and it matches if xpath-req node is equal or after
xpath-rule node.
It is possible to select some other resource model
and use reg-exp.
Simon Godik
|