###################################################################################
# #
# Copyright 2010-2013 Ning, Inc. #
# #
# Ning licenses this file to you under the Apache License, version 2.0 #
# (the "License"); you may not use this file except in compliance with the #
# License. You may obtain a copy of the License at: #
# #
# http://www.apache.org/licenses/LICENSE-2.0 #
# #
# Unless required by applicable law or agreed to in writing, software #
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT #
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the #
# License for the specific language governing permissions and limitations #
# under the License. #
# #
###################################################################################
# [main]
# See com.ning.billing.util.glue.KillBillShiroModule
# Example on how to define an admin user
#
# [users]
# admin = password, root
#
# [roles]
# root = *:*
[urls]
# All urls omitted will be available by anonymous users (RBAC disabled).
# You need to enable auth at least for the security endpoint though, otherwise
# Shiro won't try to look up the username/password (so, it won't be able
# to return the correct permissions).
/1.0/kb/security/** = authcBasic
# RBAC disabled by default
/** = anon
# To enable RBAC
# /1.0/kb/** = authcBasic