Skip to main content

Notice: this Wiki will be going read only early in 2024 and edits will no longer be possible. Please see: https://gitlab.eclipse.org/eclipsefdn/helpdesk/-/wikis/Wiki-shutdown-plan for the plan.

Jump to: navigation, search

Difference between revisions of "Policy Framework in STP"

Line 23: Line 23:
 
== Policy Creation ==
 
== Policy Creation ==
 
=== Policy Editor ===
 
=== Policy Editor ===
 +
=== Policy View ===
 +
List all of the policies associated with a service component.
 +
Allow user to add/remove policy.
 +
The add action will bring up the policy editor.
 +
Here is the screenshot:
 +
  
 
== Policy Validation ==
 
== Policy Validation ==

Revision as of 04:59, 26 September 2007

This wiki is used as a starting point to kick off the discuss of Policy support in STP. Johnson Ma

Introduction

This doc is aiming to define a framework to enforce SOA policy during component development and deployment

Use Cases

Design Map

Policy Registry

The Policy Registry will hold all policy templates to share cross projects. It will provide interface to lookup/add/remove/update policies in the registry.

Policy Database

In the first version, it will be implemented a xml file for simplicity. Later on, we maybe move on to use embedded database for better performance.

Policy Registry Service

provide interface to lookup/add/remove/update policy in the database

Policy Set Extension Point

Extension point to allow user to add pre-defined policy set to the registry.


Policy Creation

Policy Editor

Policy View

List all of the policies associated with a service component. Allow user to add/remove policy. The add action will bring up the policy editor. Here is the screenshot:


Policy Validation

The policy validation framework is used to define a validation mechanism when applying ws-policy. Policy is created by policy editor. We will write provide a policy validation rule editor for user to dynamic add/remove validation rules as well.

The validation rules will cover following category:

Policy Dependency

Define dependencies relationship between policies. Example:

<validation>
  <rule>
    <dependency policy_id = "policy A">
      <on policy_id="policy B", version="2.0"/>
      <on policy_id="policy C"/>
    </dependency>
  </rule>
</validation>

Policy Conflict

Define conflict relationship between policies Example:

<validation>
  <rule>
    <conflict policy_id = "policy A">
           <with policy_id="policy D", version="2.0" />
           <with policy_id="policy E" />
    </conflict>
  </rule>
</validation>


Policy Subject Constraints

Define the subject set with the policy may apply Example:"

<validation>
  <rule>
    <subjects policy_id = "policy A">
           <subject>endpoint</subject>
           <subject>message</subject>
    </subjects>
  </rule>
  <rule>
    <subjects policy_id = "policy B">
           <subject>message</subject>
    </subjects>
  </rule>
</validation>


Policy Validation Engine Implementation

Need to write a engine to support the about validation rules. When user add a policy, we will call the engine to do the validating, the give meaningful error message if any.

eclipse.emf.validation

Need to looking into the emf.validation to see if we can use use it here. User defines the validation rules from GUI. How to translate those rules to emf validator class on the fly is a problem in that case.

rule based xml validator in stp

Alternative, we may think about extend the current rule based xml validator for policy validation engine here. ?

Policy Association

Screenshots

User Roles

 *Policy Developer -- write policies for projects, company or domain
 *Service Developer -- write policy, config and apply existing policy to service component.
 *Deployment Assembler -- apply policies to services during deployment
 *Operator -- dynamic config/modify policy at runtime. 

Runtime support

Example

Questions

Relations with SCA Policy Framework?

The SCA policy association framework allows policies and policy subjects specified using WS-Policy and WS-PolicyAttachment, as well as with other policy languages, to be associated with SCA components.

Back to the top