equal
deleted
inserted
replaced
1 <?xml version="1.0" encoding="ISO-8859-1" ?> |
|
2 <policy> |
|
3 <!-- specify a protection domain --> |
|
4 <domain name="UnTrusted"> |
|
5 <!-- always allowed capabilities for this domain --> |
|
6 <!-- there can be only one "allow" node under "domain" node --> |
|
7 <allow> |
|
8 <capabilities> |
|
9 <capability>ReadUserData</capability> |
|
10 <capability>WriteUserData</capability> |
|
11 </capabilities> |
|
12 </allow> |
|
13 |
|
14 <!-- user-grantable capabilities for this domain --> |
|
15 <user> |
|
16 <condition>oneshot</condition> |
|
17 <defaultCondition>oneshot</defaultCondition> |
|
18 <capabilities> |
|
19 <capability>DRM</capability> |
|
20 </capabilities> |
|
21 </user> |
|
22 |
|
23 <user> |
|
24 <condition>session</condition> |
|
25 <defaultCondition>session</defaultCondition> |
|
26 <capabilities> |
|
27 <capability>ReadDeviceData</capability> |
|
28 <capability>WriteDeviceData</capability> |
|
29 <capability>Location</capability> |
|
30 </capabilities> |
|
31 </user> |
|
32 |
|
33 <!-- could extend this to other types of conditional capabilities --> |
|
34 </domain> |
|
35 |
|
36 <domain name="Nokia"> |
|
37 <!-- always allowed capabilities for this domain --> |
|
38 <allow> |
|
39 <capabilities> |
|
40 <capability>ReadUserData</capability> |
|
41 </capabilities> |
|
42 </allow> |
|
43 |
|
44 <!-- user-grantable capabilities for this domain --> |
|
45 <user> |
|
46 <condition>session</condition> |
|
47 <defaultCondition>session</defaultCondition> |
|
48 <capabilities> |
|
49 <capability>WriteUserData</capability> |
|
50 </capabilities> |
|
51 </user> |
|
52 </domain> |
|
53 |
|
54 </policy> |
|
55 |
|
56 |
|