acs-integration-tests/src/test/resources/permit-admin-only-using-matcher-policy-set.json - gerrit/www.eclipse.org/keti - Git at Google

 {
     "name" : "permit-admin-only-using-matcher-policy-set",
     "policies" : [
         {
             "name" : "Subject with role Administrator has access to everything",
              "target" : {
                 "resource" : {
                     "name" : "Site",
                     "uriTemplate" : "any"
                 },
                 "action" : "GET",
                 "subject" : {
                     "name" : "subject1",
                     "attributes" : [
                         { "issuer" : "https://acs.attributes.int",
                           "name" : "role",
                           "value" : "administrator" }
                     ]
                 }
             },
             "effect" : "PERMIT"
         },
         {
             "name" : "DENY to everyone else",
             "effect" : "DENY"
         }
     ]
 }
	{
	"name" : "permit-admin-only-using-matcher-policy-set",
	"policies" : [
	{
	"name" : "Subject with role Administrator has access to everything",
	"target" : {
	"resource" : {
	"name" : "Site",
	"uriTemplate" : "any"
	},
	"action" : "GET",
	"subject" : {
	"name" : "subject1",
	"attributes" : [
	{ "issuer" : "https://acs.attributes.int",
	"name" : "role",
	"value" : "administrator" }
	]
	}
	},
	"effect" : "PERMIT"
	},
	{
	"name" : "DENY to everyone else",
	"effect" : "DENY"
	}
	]
	}