| <principals> | ||||
|
This file contains the definition of a set of users/groups.
|
||||
| <groups> | ||||
|
The defined groups.
|
||||
| <group name="nameOfGroup"> | ||||
|
A defined group.
name - The name of this group. |
||||
| <description>The description</description> | ||||
|
A short description, use etc.
|
||||
| <permission name="nameOfPermission" /> | ||||
|
A server-specific permission-type, "administration" for instance.
name - null |
||||
| <users> | ||||
|
The defined users.
|
||||
| <user deactivated="true|false" locked="true|false" password="userPassword" realname="John Doe" username="nameOfUser"> | ||||
|
A defined user.
deactivated - Whether or not the user is deactivated (can't log in). The default is false. locked - Whether or not the user is locked in his role. Good for preventing application-errors that lead to security holes (for instance adding the "guest" user to a role). password - The password for this user. realname - The real name of this user. username - The name of this user. |
||||
| <description>The description</description> | ||||
|
A short description, use etc.
|
||||
| <certificate-issuer>CN=...</certificate-issuer> | ||||
|
The issuer CA for the user's X509-certificate if any.
|
||||
| <certificate-serial-id>1234567891011</certificate-serial-id> | ||||
|
The serial ID of the user's X509-certificate if any.
|
||||
| <group-membership group="nameOfGroup" /> | ||||
|
A group that this user is a member of.
group - The name of the group. |
||||