add acl in json

author: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> 2024-01-04 02:14:29 -0500
committer: Elizabeth Hunt <elizabeth.hunt@simponic.xyz> 2024-01-04 13:57:33 -0500
commit: b62d5f559b81556a1dd6197c72a0c43ba1744477 (patch)
tree: 0c1801c8544ed50fe798e6f2d06b6049a2fbad6d /roles/vpn/files/config
parent: fdd85fb7355d43cf185d79d1f35de9d7d647e0c5 (diff)
download: oldinfra-b62d5f559b81556a1dd6197c72a0c43ba1744477.tar.gz
oldinfra-b62d5f559b81556a1dd6197c72a0c43ba1744477.zip
2 files changed, 21 insertions, 4 deletions
diff --git a/roles/vpn/files/config/acl.json b/roles/vpn/files/config/acl.json
new file mode 100644
index 0000000..2dbb13a
--- /dev/null
+++ b/roles/vpn/files/config/acl.json
@@ -0,0 +1,21 @@
+{
+  "groups": {
+    "group:admin": ["elizabeth.hunt"]
+  },
+  "tagOwners": {
+    "tag:prod": ["group:admin"],
+    "tag:private": ["group:admin"],
+    "tag:dev": ["group:admin"]
+  },
+  "acls": [
+    {
+      "action": "accept",
+      "src": ["group:admin"],
+      "dst": [
+        "tag:dev:*",
+        "tag:private:*",
+        "tag:prod:*"
+      ]
+    }
+  ]
+}
diff --git a/roles/vpn/files/config/acl.yml b/roles/vpn/files/config/acl.yml
deleted file mode 100644
index c00cf48..0000000
--- a/roles/vpn/files/config/acl.yml
+++ /dev/null
@@ -1,4 +0,0 @@
----
-groups:
-  admin:
-    - "lizzy"
author	Elizabeth Hunt <elizabeth.hunt@simponic.xyz>	2024-01-04 02:14:29 -0500
committer	Elizabeth Hunt <elizabeth.hunt@simponic.xyz>	2024-01-04 13:57:33 -0500
commit	b62d5f559b81556a1dd6197c72a0c43ba1744477 (patch)
tree	0c1801c8544ed50fe798e6f2d06b6049a2fbad6d /roles/vpn/files/config
parent	fdd85fb7355d43cf185d79d1f35de9d7d647e0c5 (diff)
download	oldinfra-b62d5f559b81556a1dd6197c72a0c43ba1744477.tar.gz oldinfra-b62d5f559b81556a1dd6197c72a0c43ba1744477.zip