7.12. Policy Console JSP Endpoints

The JSP service endpoints in the console/policy subdirectory relate to a policies under a specific realm. To v iew the options listed in this section, start the GUI console and navigate to Access Control > [Name of Realm] > Policies.

For more information, see the chapter on Defining Authorization Policies OpenAM in the Administration Guide.

AuthToRealm.jsp

Supports a policy that depends on the realm where the user authenticated.

AuthToRealmAdd.jsp

Adds a policy that depends on the realm where the user authenticated.

AuthToRealmEdit.jsp

Edits an existing policy that depends on the realm where the user authenticated.

AuthToServiceAdd.jsp

Enables a policy that depends on an authentication realm for a user.

AuthToServiceEdit.jsp

Edits a policy that depends on an authentication realm for a user.

ConditionAdd.jsp

Supports adding a condition to a policy realm. Associated with the SelectConditionType.jsp file.

ConditionEdit.jsp

Edits a condition that has been added to a policy realm. Associated with the SelectConditionType.jsp file.

ConditionProxy.jsp

Supports a proxy of a condition that has been added to a policy realm. Cited only by the ConditionProxyViewBean.java file.

IdentityMembershipConditionAdd.jsp

Supports a policy that depends on a list of selected OpenAM subjects, as well as group membership.

IdentityMembershipConditionEdit.jsp

Edits an existing policy that depends on a list of selected OpenAM subjects, as well as group membership.

IdentitySubject.jsp

Supports the configuration of a policy based on users or groups.

IdentitySubjectAdd.jsp

Adds a policy that configures a policy based on users or groups.

IdentitySubjectEdit.jsp

Edits an existing policy based on the configuration of users or groups.

IDRepoResponseProviderAdd.jsp

Identifies a response provider that provide additional information on policy enforcement, such as why a request was allowed or denied.

IDRepoResponseProviderEdit.jsp

Edits an ID response provider that provide additional information on policy enforcement, such as why a request was allowed or denied.

PMAuthenticatedUsersSubjectAdd.jsp

Supports the configuration of a new policy for authenticated users.

PMAuthenticatedUsersSubjectEdit.jsp

Supports the editing of an existing policy for authenticated users.

PMDefaultAuthLevelCondition.jsp

Supports a policy that depends on the realm where the user authenticated, with a minimum or maximum acceptable authentication level.

PMDefaultAuthLevelConditionAdd.jsp

Adds a policy that depends on the realm where the user authenticated, with a minimum or maximum acceptable authentication level.

PMDefaultAuthLevelConditionEdit.jsp

Edits an existing policy that depends on the realm where the user authenticated, with a minimum or maximum acceptable authentication level.

PMDefaultAuthSchemeCondition.jsp

Supports the configuration of a policy that depends on the realm where the user authenticated.

PMDefaultAuthSchemeConditionAdd.jsp

Adds a policy that depends on the realm where the user authenticated.

PMDefaultAuthSchemeConditionEdit.jsp

Edits an existing policy that depends on the realm where the user authenticated.

PMDefaultIPCondition.jsp

Supports a policy based on clients in a specific range of IP addresses or associated with a specific DNS domain name.

PMDefaultIPConditionAdd.jsp

Adds a policy based on clients in a specific range of IP addresses or associated with a specific DNS domain name.

PMDefaultIPConditionEdit.jsp

Edits an existing policy based on clients in a specific range of IP addresses or associated with a specific DNS domain name.

PMDefaultSessionCondition.jsp

Supports the configuration of an Active Session policy condition.

PMDefaultSessionConditionAdd.jsp

Adds a new policy related to an Active Session policy condition.

PMDefaultSessionConditionEdit.jsp

Edits an existing policy related to an Active Session policy condition.

PMDefaultTimeCondition.jsp

Relates to a policy associated with time restrictions on a user or group.

PMDefaultTimeConditionAdd.jsp

Adds a policy for time restrictions on a user or a group.

PMDefaultTimeConditionEdit.jsp

Edits an existing policy related to time restrictions on a user or a group.

PMDSAMERoleSubject.jsp

Used for user/group roles associated with the Directory Server Access Management Edition.

PMLDAPGroupSubject.jsp

Relates to a policy dependent on group membership within the LDAP database.

PMLDAPOrgSubject.jsp

Relates to a policy dependent on organizational (OU) membership within the LDAP database.

PMLDAPRoleSubject.jsp

Relates to a policy dependent on user roles configured within the LDAP database.

Policy.jsp

Displays currently configured policies for the target realm.

PolicyNormalAdd.jsp

Shows what policy has been added from the Policies tab, after configuring a new policy with the New Policy button.

PolicyNormalEdit.jsp

Supports the creation of a new policy rule, or the edit of an existing policy rule. To access, click New in any policy category, or select an existing policy.

PolicyReferralAdd.jsp

Displays a newly configured referral policy.

PolicyReferralEdit.jsp

Supports editing of an existing referral policy.

PolicySelectType.jsp

Supports selection of a policy, by name, in either a "normal" or a "referral" category.

ReferralAdd.jsp

Adds referrals to and from an existing policy.

ReferralEdit.jsp

Edits referrals associated with an existing policy.

ReferralProxy.jsp

Supports changes in referrals to and from an existing policy.

ResponseProviderAdd.jsp

Associated with IDRepoResponseProviderAdd.jsp.

ResponseProviderEdit.jsp

Associated with IDRepoResponseProviderEdit.jsp.

ResponseProviderProxy.jsp

Supports changes in response providers for an existing policy.

RuleAdd.jsp

Displays a newly created policy, in the Edit Policy window.

RuleEdit.jsp

Supports edits of an existing policy.

RuleWithPrefixAdd.jsp

Associated with the SelectServiceType.jsp endpoint.

RuleWithPrefixEdit.jsp

Associated with the SelectServiceType.jsp endpoint.

RuleNoResourceAdd.jsp

Associated with the SelectServiceType.jsp endpoint.

RuleNoResourceEdit.jsp

Associated with the SelectServiceType.jsp endpoint.

SelectConditionType.jsp

Enables a policy that depends on whether the information for a specific user can be found in the identity repository LDAP database.

SelectRealm.jsp

Opens a window that supports a selection from existing realms, based on available authentication modules.

SelectReferralType.jsp

Supports the configuration of a referral type for a sub-realm.

SelectResponseProviderType.jsp

Supports the configuration of a response provider type for an identity repository.

SelectServiceType.jsp

Supports the configuration of a policy service type; supports the customization of a new rule for configurable service types such as the Discovery Service.

SelectSubjectType.jsp

Enables creation of a policy for web service clients, associated with federated access management.

SessionPropertyAdd.jsp

Supports a policy that depends on attributes in a user's session.

SessionPropertyConditionAdd.jsp

Supports a policy that includes conditions based on attributes in a user's session.

SessionPropertyConditionEdit.jsp

Edits conditions in a policy based on attributes in a user's session.

SessionPropertyEdit.jsp

Edits attributes in a policy based on attributes in a user's session.

SubjectAdd.jsp

Supports the configuration of a new policy for authenticated users; associated with PMAuthenticatedUsersSubjectAdd.jsp.

SubjectEdit.jsp

Edits the configuration of a policy for authenticated users; associated with PMAuthenticatedUsersSubjectEdit.jsp.

SubjectNoneAdd.jsp

Associated with a policy for web service clients; related to SelectSubjectType.jsp.

SubjectNoneEdit.jsp

Supports the configuration of a new policy for authenticated users; associated with PMAuthenticatedUsersSubjectEdit.jsp.

SubjectProxy.jsp

Configures a proxy for web service client policies; associated with SelectSubjectType.jsp.