| <rule-set name="Resource Authorization Ruleset" |
| xmlns="http://drools.org/rules" |
| xmlns:g="http://drools.org/semantics/groovy"> |
| |
| <import>com.safenetinc.policyengine.model.*</import> |
| <import>test.*</import> |
| |
| <rule name="Create authorized resource set"> |
| <parameter identifier="loginAuthorizationEvent"> |
| <class>com.safenetinc.policyengine.model.LoginAuthorizationEvent</class> |
| </parameter> |
| <g:consequence> |
| drools.assertObject(new AuthorizedResourceList(loginAuthorizationEvent.user)) |
| </g:consequence> |
| </rule> |
| |
| <rule name="Add authorized resources"> |
| <parameter identifier="authorizedResources"> |
| <class>com.safenetinc.policyengine.model.AuthorizedResourceList</class> |
| </parameter> |
| <parameter identifier="group"> |
| <class>com.safenetinc.policyengine.model.Group</class> |
| </parameter> |
| <parameter identifier="resource"> |
| <class>com.safenetinc.policyengine.model.Resource</class> |
| </parameter> |
| <g:condition>authorizedResources.user.groups.contains(group)</g:condition> |
| <g:condition>group.assignedResources.contains(resource)</g:condition> |
| <g:consequence>authorizedResources.authorizedResources.add(resource)</g:consequence> |
| </rule> |
| |
| </rule-set> |