infra/roles/vpn/files/config/acl.json

46 lines
900 B
JSON

{
"groups": {
"group:admin": ["elizabeth"],
"group:roomates": ["riley"],
"group:friends": ["riley"],
"group:sys": ["sys"]
},
"tagOwners": {
"tag:prod": ["group:admin"],
"tag:private": ["group:admin"],
"tag:dev": ["group:admin"]
},
"acls": [
{
"action": "accept",
"src": ["group:admin"],
"dst": [
"tag:dev:*",
"tag:private:*",
"tag:prod:*",
"group:sys:*"
]
},
{
"action": "accept",
"src": ["group:sys"],
"dst": ["group:sys:*", "10.128.0.0/9:*"]
},
{
"action": "accept",
"src": ["group:admin"],
"dst": ["group:admin:*", "10.128.0.0/9:*"]
},
{
"action": "accept",
"src": ["group:roomates"],
"dst": ["10.0.0.0/8:*"]
},
{
"action": "accept",
"src": ["group:friends"],
"dst": ["group:sys:*"]
}
]
}