Code Review
/
aaa.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Update AAA documentation
[aaa.git]
/
docs
/
user-guide.rst
diff --git
a/docs/user-guide.rst
b/docs/user-guide.rst
index c0031cd9f38a885b631b450b145fb8d7781f60f4..97c57287fb5c8620c9d451efc6b1022464f640b1 100644
(file)
--- a/
docs/user-guide.rst
+++ b/
docs/user-guide.rst
@@
-816,30
+816,32
@@
This an example on how to limit access to the modules endpoint:
::
HTTP Operation:
::
HTTP Operation:
- put URL: /restconf/config/aaa:http-authorization/policies
-
- or
-
- put RFC8040 URL: /rests/data/aaa:http-authorization/policies
+ put URL: /rests/data/aaa:http-authorization/policies
headers: Content-Type: application/json Accept: application/json
body:
headers: Content-Type: application/json Accept: application/json
body:
- { "aaa:policies":
- { "aaa:policies":
- [ { "aaa:resource": "/restconf/modules/**",
- "aaa:permissions": [ { "aaa:role": "admin",
- "aaa:actions": [ "get",
- "post",
- "put",
- "patch",
- "delete"
- ]
- }
- ]
- }
- ]
- }
+ {
+ "aaa:policies": {
+ "aaa:policies": [
+ {
+ "aaa:resource": "/restconf/modules/**",
+ "aaa:index": 1,
+ "aaa:permissions": [
+ {
+ "aaa:role": "admin",
+ "aaa:actions": [
+ "get",
+ "post",
+ "put",
+ "patch",
+ "delete"
+ ]
+ }
+ ]
+ }
+ ]
+ }
}
The above example locks down access to the modules endpoint (and any URLS
}
The above example locks down access to the modules endpoint (and any URLS