Versions Compared

Old Version 5

changes.mady.by.user Former user

Saved on

compared with

New Version 6

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Integration details

...

There will be a separate permission for traversal and resources. Let's call them org.onap.aai.resources.access and org.onap.aai.traversal.access. For now we will not distinguish between different objects we could affect, so the instance will always be "*" meaning everything. Actions will be mapped to HTTP verbs - GET, PUT, POST, DELETE, PATCH.

For a seemless transition to AAF, the first roles we use for our clients will be called org.onap.aai.resources.all and org.onap.aai.traversal.all and will contain all read and write permissions for A&AI web services. This role will be assigned to all users/applications which access A&AI web services.

resourcesresourcesresourcesresources
Role org.onap.aai.traversal.all
Permission typeinstancesaction
org.onap.aai.
resources
traversal.access*get
org.onap.aai.
traversal.access*put
org.onap.aai.
traversal.access*post
org.onap.aai.
traversal.access*delete
org.onap.aai.
traversal.access*patch
traversaltraversaltraversaltraversal
Role org.onap.aai.resources.all
Permission typeinstancesaction
org.onap.aai.
traversal
resources.access*get
org.onap.aai.
resources.access*put
org.onap.aai.
resources.access*post
org.onap.aai.
resources.access*delete
org.onap.aai.
resources.access*patch