@include "security/enableSecurity.config"
# secure contact API by basic authentication
@include "security/basicAuthentication.config" {
"conditions": "/request/path =~ /resources/contact(/.*)?"
}
# only people in group “friends” can access contact API
@include "security/authorization.config" {
"conditions": "/request/path =~ /resources/contact(/.*)?",
"groups" : ["FRIENDS"]
}
这段配置信息为访问联系人的 REST API 提供 HTTP 基本身份验证,并且授权只有名为 FRIENDS 的群组成员可以访问。