Policy Management Portlet

From Gcube Wiki
Revision as of 16:10, 24 October 2013 by Ciro.formisano (Talk | contribs) (Create Policy)

Jump to: navigation, search

Introduction

The Policy Management Portlet allows to define, modify and remove authorization policies for services and roles. It communicates with SOA3 Policy Management Service and User Management Service.

Services and Policies Lists

The first screen of the Portlet is a list of the services whose policies the logged user is able to define or manage.

ServiceList.jpg

The elements of the list can be sorted by Service Name and Service Class by clicking on the column name.

Show Policies

To show the list of the policy related to a service, the user should select the service and click on Show Policies, on the bottom-left side of the screen:

ShowPolicies.jpg

The Policies List is shown in a popup window:

ShowPoliciesPopup.jpg


The Policies List Popup provides three functionalities:

  • Create Policy
  • Modify Policy
  • Remove Policy
  • Close

It’s possible to sort the table clicking on columns name.

Create Policy

A new policy can be created starting from a service: the user should select it and click on the "Create Policy" button. The Policy Creation Popup is shown:


CreatePolicy.jpg


the popup contains:

  • Services: drop-down list of services (mandatory)
  • gHNs: list of gHNs (optional). It’s possible to select zero or more gHNs. Hold down Ctrl or Shift key for multiple selections
  • Roles: list of roles (mandatory if service category is not selected). It’s possible to select one or more values. Hold down Ctrl or Shift key for multiple selections.
  • Service Category: list of service categories (mandatory if role is not selected). It’s possible to select one or more values. Hold down Ctrl or Shift key for multiple selections.
  • Start time range: is the start time of time range (optional). The format is hh:mm where hh is 24-hours form.
  • End time range: is the end time of time range (optional). The format is hh:mm where hh is 24-hours form.
  • Start date: is the start date of date range (optional). The format is dd/MM/yyyy
  • End date: is the end date of date range (optional). The format is dd/MM/yyyy
  • Permit: is the check-box for permit or deny setting of policy

After the policy has been defined the user should click on Create to upload it to the PAP. The Portlet will show a confirmation popup and, if the operation is confirmed, the final result:


The Create Policy Button generates a popup


ServiceSelection.jpg

  • By clicking on Create Policies button without any selected service
    • The creation popup (described below) is shown. On the popup it is possible to select the service.

NoServiceSelection.jpg

  • By clicking on Create Policy button from policies list popup
    • The creation popup (described below) is shown with a preselected service. In the popup it isn’t possible to change the service.


ShowPoliciesPopup.jpg

Create new Policy

If the user clicks on Create Policy button in the services list page or in the policies list popup, the creation policy popup is shown:

CreatePolicy.jpg

the popup contains:

  • Services: drop-down list of services (mandatory)
  • Hosts: list of hosts (optional). It’s possible to select zero or more hosts. Hold down Ctrl or Shift key for multiple selections.
  • Roles: list of roles (mandatory) . It’s possible to select zero or more hosts. Hold down Ctrl or Shift key for multiple selections.
  • Start time range: is the start time of time range (optional). The format is hh:mm where hh is 24-hours form.
  • End time range: is the end time of time range (optional). The format is hh:mm where hh is 24-hours form.
  • Start date: is the start date of date range (optional). The format is dd/MM/yyyy
  • End date: is the end date of date range (optional). The format is dd/MM/yyyy
  • Permit: is the check-box for permit or deny setting of policy

After the policy has been defined the user should click Create to upload it to SOA3. The Portlet will show a confirmation popup and, if the operation is confirmed, the final result:

CreatePolicyConfirmation.jpg

Modify Policy

To modify a Policy the user should select it from the Policies List and click Modify Policy button. The following modifications are allowed:

  • switching from permit to deny and vice versa
  • changing the time range and the date range

The Policy Modification Popup is similar to the Policy Creation Popup

ModifyPolicy.jpg

If the user clicks Update button a confirmation popup is shown and, if the operation is confirmed, the result is shown in another popup.

Remove Policy

To remove a Policy the user should select the policy and click Remove Policy button. The operation must be confirmed.

DeletePolicy.jpg

After the completion, a popup with the result is shown:

DeletePolicyConfirmation.jpg