work on account editing
[Bookkeeping.git] / xml / bookkeeping.authorise.xml
blob1ac0fac4e3fe7a9f1f30a80bcc6649a60a8a7029
1 <?xml version='1.0' encoding='UTF-8'?>  
2 <system xmlns='com/interrupt/bookkeeping' 
3                 xmlns:users='com/interrupt/bookkeeping/users' 
4                 xmlns:bkell='com/interrupt/bookkeeping/cc/bkell' 
5                 xmlns:command='com/interrupt/bookkeeping/cc/bkell/command'
6                 xmlns:aauth='com/interrupt/bookkeeping/cc/bkell/aauth'
7                 id='' > 
8         
9         <!-- Authentication & Authorization information will not be given at this time.
10                 Should use an open, tested system for A & A. This is just an interface to that system. 
11                 -->
12         <aauth:aauthentication sessiontimeout="6000" >
13                 
14                 <users:groups id="main.groups" >
15                         <users:group id="webkell" name="Webkell" >
16                                 <users:user />
17                         </users:group>
18                 </users:groups>
19                 
20                 
21                 <!-- actions that a user is allowed to do -->
22                 <users:users id="main.users" >
23                         
24                         <!-- this user has a 10 minute session timeout period (1000 * 60 * 10 = 600'000 milliseconds) --> 
25                         <users:user id="root" username="root" password="password" logintimeout="600000" >
26                                 <aauth:allowedActions id="root.allowedActions" >
27                                         <command:command name='create'  id='command.create' />
28                                         <command:command name='add'  id='command.add' />
29                                         <command:command name='remove'  id='command.remove' />
30                                         <command:command name='reverse'  id='command.reverse' />
31                                         <command:command name='find'  id='command.find' />
32                                         <command:command name='load'  id='command.load' />
33                                 </aauth:allowedActions>
34                         </users:user>
35                 </users:users>
36                 
37         </aauth:aauthentication>
38         
39 </system>