Role Based Policy Database Manipulation

The functionality developed to manipulate the Role Based Policy Database was written with both the Command Line utility (pbdbutil), the policy server (pbmasterd) and the REST interface in mind. Functions use JSON objects to specify records to retrieve, update and delete.

To retrieve the entire Role Based Policy database, use the REST GET HTTP method, and specify a URL similar to https:// … /policies/rbp.

To retrieve individual Role Based Policy entities, use the REST GET HTTP method with a URL similar to https:// … /policy/rbp/<entity> and specify a parameter of either name=<name> or id=<id>.

https:// … /policy/rbp/usergrp?.....name=ugrp1

To import a new Role Based Policy database, use the REST PUT HTTP method with a URL similar to https:// … /policies/rbp and specify the complete database, in the appropriate format, in the BODY data.

To update specific Role Based Policy entities, use the REST PUT HTTP method with a URL similar to https:// … /policy/rbp/<entity> and specify the entity, in the appropriate format, in the BODY data.

To delete specific Role Based Policy entities, the developer should use the REST DELETE HTTP method with a URL similar to https:// … /policy/rbp/<entity> and specify a parameter of either name=<name> or id=<id>.

To begin a Role Based Policy Change Transaction, use the REST PUT HTTP method with a URL similar to https:// … /policy/rbp/begin.

To commit a Role Based Policy Change Transaction, use the REST PUT HTTP method with a URL similar to https:// … /policy/rbp/commit.

To rollback a Role Based Policy Change Transaction, use the REST PUT HTTP method with a URL similar to https:// … /policy/rbp/rollback.

To retrieve a Role Based Policy Change Transaction details, use the REST GET HTTP method with a URL similar to https:// … /policy/rbp/transaction.