🤔reglas de ejemplo
########## EXAMPLE RULES #############
access_control:
default_policy: deny
rules:
## bypass rule
- domain:
- "auth.domain.com"
policy: bypass
## bypass api / triggers
- domain: "*.domain.com"
resources:
- "^/api([/?].*)?$"
- "^/identity.*$"
- "^/triggers.*$"
- "^/meshagents.*$"
- "^/meshsettings.*$"
- "^/agent.*$"
- "^/control.*$"
- "^/meshrelay.*$"
- "^/wl.*$"
policy: bypass
## block admin
- domain: "bitwarden.domain.com"
resources:
- "^*/admin.*$"
policy: one_factor
## bypass rule
- domain:
- "bitwarden.domain.com"
policy: bypass
## two factor login - admin
- domain:
- "proxy.domain.com"
- "ipa.domain.com"
- "opn.domain.com"
subject:
- "group:admins"
policy: two_factor
## one factor login - moderators
- domain:
- "sonarr.domain.com"
- "radarr.domain.com"
- "nzbhydra.domain.com"
- "sabnzbd.domain.com"
- "torrent.domain.com"
- "domain.com"
subject:
- "group:moderators"
- "group:admins"
policy: one_factor
## one factor login - requesters
- domain:
- "petio.domain.com"
- "overseerr.domain.com"
subject:
- "group:requesters"
- "group:admins"
policy: one_factor
## one factor login - catch all
- domain: "*.domain.com"
subject:
- "group:admins"
policy: one_factorÚltima actualización