source: fedd/abac-src/ttg/demo/build/WEB-INF/web.xml @ 3cbf9eb

version-1.30
Last change on this file since 3cbf9eb was 8780cbec, checked in by Jay Jacobs <Jay.Jacobs@…>, 16 years ago

ABAC sources from Cobham

  • Property mode set to 100644
File size: 7.8 KB
Line 
1<!DOCTYPE web-app
2    PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
3    "http://java.sun.com/dtd/web-app_2_3.dtd">
4
5<web-app>
6
7
8    <!-- General description of your web application -->
9
10    <display-name>ABAC Demo Application</display-name>
11    <description>
12      This is version 1.0 of an application to perform
13      attribute based access control using a servlet
14      authentication filter. 
15    </description>
16
17
18    <!-- Context initialization parameters that define shared
19         String constants used within your application, which
20         can be customized by the system administrator who is
21         installing your application.  The values actually
22         assigned to these parameters can be retrieved in a
23         servlet or JSP page by calling:
24
25             String value =
26               getServletContext().getInitParameter("name");
27
28         where "name" matches the <param-name> element of
29         one of these initialization parameters.
30
31         You can define any number of context initialization
32         parameters, including zero.
33    -->
34
35    <context-param>
36      <param-name>webmaster</param-name>
37      <param-value>Jay_Jacobs@networkassociates.com</param-value>
38      <description>
39        The EMAIL address of the administrator to whom questions
40        and comments about this application should be addressed.
41      </description>
42    </context-param>
43
44
45    <!-- Servlet definitions for the servlets that make up
46         your web application, including initialization
47         parameters.  With Tomcat, you can also send requests
48         to servlets not listed here with a request like this:
49
50           http://localhost:8080/{context-path}/servlet/{classname}
51
52         but this usage is not guaranteed to be portable.  It also
53         makes relative references to images and other resources
54         required by your servlet more complicated, so defining
55         all of your servlets (and defining a mapping to them with
56         a servlet-mapping element) is recommended.
57
58         Servlet initialization parameters can be retrieved in a
59         servlet or JSP page by calling:
60
61             String value =
62               getServletConfig().getInitParameter("name");
63
64         where "name" matches the <param-name> element of
65         one of these initialization parameters.
66
67         You can define any number of servlets, including zero.
68    -->
69
70    <!--filter>
71      <filter-name>medsup filter</filter-name>
72      <description>
73      The access mediator handles the initialization of a negotiation on
74      the server-side. This includes creating a new negotiation context,
75      a new agent, retrieve a remote reference to the peer's agent, and
76      constructing a new primary trust target.
77
78      The servlet then waits for a decision. If the negotiation succeeds
79      the reuqest is allowed to continue along the filter/servlet chain.
80      Failure results in the request being blocked immediately.
81      </description>
82      <filter-class>AccessMediator</filter-class>
83      <init-param>
84        <param-name>EntityName</param-name>
85        <param-value>MedSup</param-value>
86      </init-param>
87      <init-param>
88        <param-name>EntityHash</param-name>
89        <param-value>FakeHashKeyMedSup</param-value>
90      </init-param>
91      <init-param>
92        <param-name>PrimaryRole</param-name>
93        <param-value>discount</param-value>
94      </init-param>
95      <init-param>
96        <param-name>PolicyFile</param-name>
97        <param-value>/var/tomcat4/webapps/demo/medsup.txt</param-value>
98      </init-param>
99    </filter-->
100
101    <filter>
102      <filter-name>geni filter</filter-name>
103      <description>
104      The access mediator handles the initialization of a negotiation on
105      the server-side. This includes creating a new negotiation context,
106      a new agent, retrieve a remote reference to the peer's agent, and
107      constructing a new primary trust target.
108
109      The servlet then waits for a decision. If the negotiation succeeds
110      the reuqest is allowed to continue along the filter/servlet chain.
111      Failure results in the request being blocked immediately.
112      </description>
113      <filter-class>AccessMediator</filter-class>
114      <init-param>
115        <param-name>EntityName</param-name>
116        <param-value>GENI</param-value>
117      </init-param>
118      <init-param>
119        <param-name>EntityHash</param-name>
120        <param-value>FakeHashKeyGeni</param-value>
121      </init-param>
122      <init-param>
123        <param-name>PrimaryRole</param-name>
124        <param-value>GENI.CTFaccess</param-value>
125      </init-param>
126      <init-param>
127        <param-name>PolicyFile</param-name>
128        <param-value>/var/tomcat4/webapps/demo/geni.txt</param-value>
129      </init-param>
130    </filter>
131
132    <!--filter>
133      <filter-name>swedish filter</filter-name>
134      <description>
135      The access mediator handles the initialization of a negotiation on
136      the server-side. This includes creating a new negotiation context,
137      a new agent, retrieve a remote reference to the peer's agent, and
138      constructing a new primary trust target.
139
140      The servlet then waits for a decision. If the negotiation succeeds
141      the reuqest is allowed to continue along the filter/servlet chain.
142      Failure results in the request being blocked immediately.
143      </description>
144      <filter-class>AccessMediator</filter-class>
145      <init-param>
146        <param-name>EntityName</param-name>
147        <param-value>SAdmir</param-value>
148      </init-param>
149      <init-param>
150        <param-name>EntityHash</param-name>
151        <param-value>FakeHashKeySAdmir</param-value>
152      </init-param>
153      <init-param>
154        <param-name>PrimaryRole</param-name>
155        <param-value>SAdmin.getsSLocs</param-value>
156      </init-param>
157      <init-param>
158        <param-name>PolicyFile</param-name>
159        <param-value>/var/tomcat4/webapps/demo/WEB-INF/sadmir.txt</param-value>
160      </init-param>
161    </filter-->
162
163    <!--filter-mapping>
164      <filter-name>medsup filter</filter-name>
165      <url-pattern>/medsup/*</url-pattern>
166    </filter-mapping-->
167
168    <filter-mapping>
169      <filter-name>geni filter</filter-name>
170      <url-pattern>/geni/*</url-pattern>
171    </filter-mapping>
172
173    <!--filter-mapping>
174      <filter-name>swedish filter</filter-name>
175      <url-pattern>/sweden/*</url-pattern>
176    </filter-mapping-->
177
178    <servlet>
179      <servlet-name>session servlet</servlet-name>
180      <servlet-class>SessionServlet</servlet-class>
181    </servlet>
182
183    <!--servlet>
184      <servlet-name>swedish discovery</servlet-name>
185      <servlet-class>DiscoveryServlet</servlet-class>
186      <init-param>
187        <param-name>PolicyFile</param-name>
188        <param-value>/var/tomcat4/webapps/demo/WEB-INF/se.xml</param-value>
189      </init-param>
190    </servlet-->
191
192    <!--servlet>
193      <servlet-name>american discovery</servlet-name>
194      <servlet-class>DiscoveryServlet</servlet-class>
195      <init-param>
196        <param-name>PolicyFile</param-name>
197        <param-value>/var/tomcat4/webapps/demo/WEB-INF/usn.xml</param-value>
198      </init-param>
199    </servlet-->
200
201    <servlet-mapping>
202      <servlet-name>session servlet</servlet-name>
203      <url-pattern>/session</url-pattern>
204    </servlet-mapping>
205
206    <!--servlet-mapping>
207      <servlet-name>swedish discovery</servlet-name>
208      <url-pattern>/se-discovery</url-pattern>
209    </servlet-mapping-->
210
211    <!--servlet-mapping>
212      <servlet-name>american discovery</servlet-name>
213      <url-pattern>/us-discovery</url-pattern>
214    </servlet-mapping-->
215
216    <!-- Define the default session timeout for your application,
217         in minutes.  From a servlet or JSP page, you can modify
218         the timeout for a particular session dynamically by using
219         HttpSession.getMaxInactiveInterval(). -->
220
221    <session-config>
222      <session-timeout>30</session-timeout>    <!-- 30 minutes -->
223    </session-config>
224
225
226</web-app>
Note: See TracBrowser for help on using the repository browser.