====== Drupal user authentication and Fedora XACML ======
* **without Drupal filter**
\\
\\
Add drupal admin and anonymous users to fedora users:
nano -w /usr/local/fedora/server/config/fedora-users.xml
administrator
fedoraUser
fedoraInternalCall-1
fedoraInternalCall-2
\\
\\
Add policy for getDatastreamHistory unrestricted:
nano -w /usr/local/fedora/data/fedora-xacml-policies/repository-policies/default/permit-getDatastreamHistory-unrestricted.xml
Note that other policies may provide exceptions to this broad policy. This policy assumes api-m users have to be authenticated
urn:fedora:names:fedora:2.1:action:id-getDatastreamHistory
\\
\\
Add back-end and front-end IP to apim policy:
nano -w /usr/local/fedora/data/fedora-xacml-policies/repository-policies/default/deny-apim-if-not-localhost.xml
150.145.48.42
2a00:1620:0:0:0:0:0:42
150.145.48.44
2a00:1620:0:0:0:0:0:44
\\
\\
/etc/init.d/tomcat7 restart