infra/roles/vpn/files/config/acl.json
2024-01-08 04:11:51 -05:00

46 lines
904 B
JSON

{
"groups": {
"group:admin": ["elizabeth.hunt"],
"group:roomates": ["riley.ferguson"],
"group:friends": ["riley.ferguson"],
"group:sys": ["sys"]
},
"tagOwners": {
"tag:prod": ["group:admin"],
"tag:private": ["group:admin"],
"tag:dev": ["group:admin"]
},
"acls": [
{
"action": "accept",
"src": ["group:admin"],
"dst": [
"tag:dev:*",
"tag:private:*",
"tag:prod:*",
"group:sys:*"
]
},
{
"action": "accept",
"src": ["group:sys"],
"dst": ["group:sys:*"]
},
{
"action": "accept",
"src": ["group:admin"],
"dst": ["10.0.0.0/24:*"]
},
{
"action": "accept",
"src": ["group:roomates"],
"dst": ["10.0.0.0/24:*", "tag:router:*"]
},
{
"action": "accept",
"src": ["group:friends"],
"dst": ["group:sys:*"]
}
]
}