740 | | Finally, in order to grant access to our files you need to add the line below in your `esgf_policies_local.xml` file, located under `/usr/local/apache-tomcat-7.0.47/webapps/esg-orp/WEB-INF/classes/esg/orp/orp/config/` directory. |
| 740 | Finally, in order to grant access to our files you need to add the line below : |
| 741 | |
| 742 | {{{ |
| 743 | <policy resource=".*CORDEX.*" attribute_type="ANY" attribute_value="" action="Read"/> |
| 744 | }}} |
| 745 | |
| 746 | in your `esgf_policies_local.xml` file : |
| 747 | |
| 748 | {{{ |
| 749 | #!sh |
| 750 | $ cat /usr/local/apache-tomcat-7.0.47/webapps/esg-orp/WEB-INF/classes/esg/orp/orp/config/esgf_policies_local.xml |
| 751 | <?xml version="1.0" encoding="UTF-8" standalone="yes"?> |
| 752 | |
| 753 | <!-- This file is intended to be edited and maintained by the local Node admnistrators. |
| 754 | It should contain only policies specific to data served by the local Node. |
| 755 | It will not be overridden by a software update. --> |
| 756 | <policies xmlns="http://www.esgf.org/security"> |
| 757 | <policy resource=".*CORDEX.*" attribute_type="ANY" attribute_value="" action="Read"/> |
| 758 | <!-- The following statements allow all members of group "CMIP5 Research" or "CMIP5 Commercial" to read any local URL that contains "cmip5". |
| 759 | Note that the groups "CMIP5 Research" and "CMIP5 Commercial" are administered by PCMDI --> |
| 760 | <!-- <policy resource=".*cmip5.*" attribute_type="CMIP5 Research" attribute_value="user" action="Read"/> --> |
| 761 | <!-- <policy resource=".*cmip5.*" attribute_type="CMIP5 Commercial" attribute_value="user" action="Read"/> --> |
| 762 | <!-- These statements provide CMIP5 Read access for members of the old gateways --> |
| 763 | <!-- <policy resource=".*cmip5.*" attribute_type="CMIP5 Research" attribute_value="default" action="Read"/> --> |
| 764 | <!-- <policy resource=".*cmip5.*" attribute_type="CMIP5 Commercial" attribute_value="default" action="Read"/> --> |
| 765 | |
| 766 | |
| 767 | <!-- The following statement allows all members of group "MY GROUP" to read any local URL that contains "my_data" |
| 768 | <policy resource=".*my_data.*" attribute_type="MY GROUP" attribute_value="user" action="Read"/> --> |
| 769 | |
| 770 | <!-- The following statement allows members of group "MY GROUP" with role="publisher" to publish local datasets with id containing "my_data" |
| 771 | <policy resource=".*my_data.*" attribute_type="MY GROUP" attribute_value="publisher" action="Write"/> --> |
| 772 | |
| 773 | <!-- The following statements makes resources that contain '.*test.*' freely available for download --> |
| 774 | <!-- <policy resource=".*test.*" attribute_type="ANY" attribute_value="" action="Read"/> --> |
| 775 | |
| 776 | <!-- The following statements makes all resources freely available for download --> |
| 777 | <!-- <policy resource=".*" attribute_type="ANY" attribute_value="" action="Read"/> --> |
| 778 | |
| 779 | </policies> |
| 780 | }}} |