| name | data type | type | namespace | min/max occurs | description |
|---|---|---|---|---|---|
| auditMode | string | element | 0/1 | ||
| policies | list of rangerPolicy | element | 0/unbounded | ||
| policyDeltas | list of rangerPolicyDelta | element | 0/unbounded | ||
| policyUpdateTime | dateTime | element | 0/1 | ||
| policyVersion | long | element | 0/1 | ||
| securityZones | (custom) | element | 0/1 | ||
| serviceConfig | (custom) | element | 0/1 | ||
| serviceDef | rangerServiceDef | element | 0/1 | ||
| serviceId | long | element | 0/1 | ||
| serviceName | string | element | 0/1 | ||
| tagPolicies | tagPolicies | element | 0/1 |
Example
<servicePolicies>
<policies>
<denyExceptions>
<groups>...</groups>
<users>...</users>
<delegateAdmin>...</delegateAdmin>
<accesses/>
<conditions/>
<roles>...</roles>
</denyExceptions>
<service>...</service>
<dataMaskPolicyItems>
<dataMaskInfo/>
</dataMaskPolicyItems>
<rowFilterPolicyItems>
<rowFilterInfo/>
</rowFilterPolicyItems>
<zoneName>...</zoneName>
<resources>...</resources>
<denyPolicyItems>
<groups>...</groups>
<users>...</users>
<delegateAdmin>...</delegateAdmin>
<accesses/>
<conditions/>
<roles>...</roles>
</denyPolicyItems>
<policyPriority>...</policyPriority>
<allowExceptions>
<groups>...</groups>
<users>...</users>
<delegateAdmin>...</delegateAdmin>
<accesses/>
<conditions/>
<roles>...</roles>
</allowExceptions>
<validitySchedules>
<startTime>...</startTime>
<recurrences/>
<endTime>...</endTime>
<timeZone>...</timeZone>
</validitySchedules>
<policyLabels>...</policyLabels>
<policyType>...</policyType>
<description>...</description>
<conditions>
<type>...</type>
<values>...</values>
</conditions>
<policyItems>
<groups>...</groups>
<users>...</users>
<delegateAdmin>...</delegateAdmin>
<accesses/>
<conditions/>
<roles>...</roles>
</policyItems>
<options>...</options>
<isDenyAllElse>...</isDenyAllElse>
<isAuditEnabled>...</isAuditEnabled>
<name>...</name>
<resourceSignature>...</resourceSignature>
<serviceType>...</serviceType>
<guid>...</guid>
<updateTime>...</updateTime>
<id>...</id>
<createTime>...</createTime>
<updatedBy>...</updatedBy>
<createdBy>...</createdBy>
<isEnabled>...</isEnabled>
<version>...</version>
</policies>
<auditMode>...</auditMode>
<policyVersion>...</policyVersion>
<serviceDef>
<dataMaskDef>
<maskTypes/>
<accessTypes/>
<resources/>
</dataMaskDef>
<configs>
<type>...</type>
<rbKeyDescription>...</rbKeyDescription>
<rbKeyValidationMessage>...</rbKeyValidationMessage>
<subType>...</subType>
<rbKeyLabel>...</rbKeyLabel>
<itemId>...</itemId>
<validationRegEx>...</validationRegEx>
<description>...</description>
<label>...</label>
<mandatory>...</mandatory>
<name>...</name>
<validationMessage>...</validationMessage>
<defaultValue>...</defaultValue>
<uiHint>...</uiHint>
</configs>
<rbKeyDescription>...</rbKeyDescription>
<rbKeyLabel>...</rbKeyLabel>
<displayName>...</displayName>
<implClass>...</implClass>
<resources>
<recursiveSupported>...</recursiveSupported>
<rbKeyDescription>...</rbKeyDescription>
<uiHint>...</uiHint>
<matcherOptions>...</matcherOptions>
<level>...</level>
<description>...</description>
<name>...</name>
<validationRegEx>...</validationRegEx>
<isValidLeaf>...</isValidLeaf>
<type>...</type>
<rbKeyLabel>...</rbKeyLabel>
<validationMessage>...</validationMessage>
<excludesSupported>...</excludesSupported>
<mandatory>...</mandatory>
<label>...</label>
<accessTypeRestrictions>...</accessTypeRestrictions>
<rbKeyValidationMessage>...</rbKeyValidationMessage>
<parent>...</parent>
<lookupSupported>...</lookupSupported>
<matcher>...</matcher>
<itemId>...</itemId>
</resources>
<name>...</name>
<description>...</description>
<accessTypes>
<label>...</label>
<itemId>...</itemId>
<name>...</name>
<impliedGrants>...</impliedGrants>
<rbKeyLabel>...</rbKeyLabel>
</accessTypes>
<label>...</label>
<rowFilterDef>
<resources/>
<accessTypes/>
</rowFilterDef>
<contextEnrichers>
<name>...</name>
<itemId>...</itemId>
<enricher>...</enricher>
<enricherOptions>...</enricherOptions>
</contextEnrichers>
<policyConditions>
<rbKeyDescription>...</rbKeyDescription>
<rbKeyLabel>...</rbKeyLabel>
<description>...</description>
<itemId>...</itemId>
<evaluatorOptions>...</evaluatorOptions>
<validationRegEx>...</validationRegEx>
<evaluator>...</evaluator>
<rbKeyValidationMessage>...</rbKeyValidationMessage>
<validationMessage>...</validationMessage>
<name>...</name>
<uiHint>...</uiHint>
<label>...</label>
</policyConditions>
<options>...</options>
<enums>
<name>...</name>
<itemId>...</itemId>
<defaultIndex>...</defaultIndex>
<elements/>
</enums>
<guid>...</guid>
<updateTime>...</updateTime>
<id>...</id>
<createTime>...</createTime>
<updatedBy>...</updatedBy>
<createdBy>...</createdBy>
<isEnabled>...</isEnabled>
<version>...</version>
</serviceDef>
<serviceId>...</serviceId>
<serviceConfig>...</serviceConfig>
<securityZones>...</securityZones>
<policyUpdateTime>...</policyUpdateTime>
<policyDeltas>
<policiesVersion>...</policiesVersion>
<changeType>...</changeType>
<policy>
<denyExceptions/>
<service>...</service>
<dataMaskPolicyItems/>
<rowFilterPolicyItems/>
<zoneName>...</zoneName>
<resources>...</resources>
<denyPolicyItems/>
<policyPriority>...</policyPriority>
<allowExceptions/>
<validitySchedules/>
<policyLabels>...</policyLabels>
<policyType>...</policyType>
<description>...</description>
<conditions/>
<policyItems/>
<options>...</options>
<isDenyAllElse>...</isDenyAllElse>
<isAuditEnabled>...</isAuditEnabled>
<name>...</name>
<resourceSignature>...</resourceSignature>
<serviceType>...</serviceType>
</policy>
<id>...</id>
</policyDeltas>
<serviceName>...</serviceName>
<tagPolicies>
<policyUpdateTime>...</policyUpdateTime>
<serviceName>...</serviceName>
<auditMode>...</auditMode>
<policyVersion>...</policyVersion>
<serviceId>...</serviceId>
<serviceConfig>...</serviceConfig>
<serviceDef>
<dataMaskDef/>
<configs/>
<rbKeyDescription>...</rbKeyDescription>
<rbKeyLabel>...</rbKeyLabel>
<displayName>...</displayName>
<implClass>...</implClass>
<resources/>
<name>...</name>
<description>...</description>
<accessTypes/>
<label>...</label>
<rowFilterDef/>
<contextEnrichers/>
<policyConditions/>
<options>...</options>
<enums/>
</serviceDef>
<policies>
<denyExceptions/>
<service>...</service>
<dataMaskPolicyItems/>
<rowFilterPolicyItems/>
<zoneName>...</zoneName>
<resources>...</resources>
<denyPolicyItems/>
<policyPriority>...</policyPriority>
<allowExceptions/>
<validitySchedules/>
<policyLabels>...</policyLabels>
<policyType>...</policyType>
<description>...</description>
<conditions/>
<policyItems/>
<options>...</options>
<isDenyAllElse>...</isDenyAllElse>
<isAuditEnabled>...</isAuditEnabled>
<name>...</name>
<resourceSignature>...</resourceSignature>
<serviceType>...</serviceType>
</policies>
</tagPolicies>
</servicePolicies>