infra/roles/vpn/files/config/acl.json
2024-10-15 00:33:58 -04:00

52 lines
1.0 KiB
JSON

{
"groups": {
"group:admin": ["elizabeth"],
"group:roomates": ["riley"],
"group:friends": ["riley", "rain"],
"group:rain": ["rain"],
"group:sys": ["sys"]
},
"tagOwners": {
"tag:prod": ["group:admin"],
"tag:private": ["group:admin"],
"tag:dev": ["group:admin"]
},
"acls": [
{
"action": "accept",
"src": ["group:admin"],
"dst": [
"tag:dev:*",
"tag:private:*",
"tag:prod:*",
"group:sys:*"
]
},
{
"action": "accept",
"src": ["group:sys"],
"dst": ["group:sys:*", "10.128.0.0/9:*", "group:rain:*"]
},
{
"action": "accept",
"src": ["group:admin"],
"dst": ["group:admin:*", "10.128.0.0/9:*"]
},
{
"action": "accept",
"src": ["group:roomates"],
"dst": ["10.0.0.0/8:*"]
},
{
"action": "accept",
"src": ["group:friends"],
"dst": ["group:sys:*"]
},
{
"action": "accept",
"src": ["group:rain"],
"dst": ["group:rain:*"]
}
]
}