| { |
| "ietf-alarms:alarms": { |
| "control": { |
| "alarm-shelving": { |
| "shelf": [ |
| { |
| "name": "systemd journal upload", |
| "resource": [ |
| "systemd-journal-upload.service" |
| ], |
| "alarm-type": [ |
| { |
| "alarm-type-id": "velia-alarms:systemd-unit-failure", |
| "alarm-type-qualifier-match": "" |
| } |
| ], |
| "description": "Ignore systemd-journal-upload.service failures" |
| } |
| ] |
| } |
| } |
| }, |
| "ietf-interfaces:interfaces": { |
| "interface": [ |
| { |
| "name": "br0", |
| "type": "iana-if-type:bridge", |
| "ietf-ip:ipv4": { |
| "czechlight-network:dhcp-client": true |
| }, |
| "ietf-ip:ipv6": { |
| "enabled": true, |
| "autoconf": { |
| "create-global-addresses": true |
| } |
| } |
| }, |
| { |
| "name": "eth1", |
| "type": "iana-if-type:ethernetCsmacd", |
| "czechlight-network:bridge": "br0" |
| }, |
| { |
| "name": "eth0", |
| "type": "iana-if-type:ethernetCsmacd", |
| "czechlight-network:bridge": "br0" |
| }, |
| { |
| "name": "oscE", |
| "type": "iana-if-type:ethernetCsmacd", |
| "czechlight-network:bridge": "br0" |
| }, |
| { |
| "name": "oscW", |
| "type": "iana-if-type:ethernetCsmacd", |
| "czechlight-network:bridge": "br0" |
| } |
| ] |
| }, |
| "ietf-keystore:keystore": { |
| "asymmetric-keys": { |
| "asymmetric-key": [ |
| { |
| "name": "genkey", |
| "algorithm": "rsa2048", |
| "public-key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/tnburJOGHcvSOKw7SdOfEvZD28WatHUfuWRCWZoElXtX1sNkBFXvRbKahOR8sZ221iRdlZ89bBVtTeX8N2wgPApy+Xi/9X1Icee2cU7QC7UfnNnWMW1C6WEZQS8zt+6IAQsOLk1AWyFeAN1EZQfjM/2UfxOW/kxXBu+MeVvdjouZYs73mW4OyV6VptMkAk4JDk5ieEp65p/rQOF0pIvpnu56nl9cybQ1s3DAQ76ZJP5qf8VdKS2WcBlS7UwXAMvXPM5TiIebnXtrF8jTd3S3ApOyZv00jxn/s5l6L1VA0p5HyB9W4DfNztINRyE56BEBvPeJePNWwNg+sVClLdmQIDAQAB", |
| "private-key": "MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCz+2du6sk4Ydy9I4rDtJ058S9kPbxZq0dR+5ZEJZmgSVe1fWw2QEVe9FspqE5HyxnbbWJF2Vnz1sFW1N5fw3bCA8CnL5eL/1fUhx57ZxTtALtR+c2dYxbULpYRlBLzO37ogBCw4uTUBbIV4A3URlB+Mz/ZR/E5b+TFcG74x5W92Oi5lizveZbg7JXpWm0yQCTgkOTmJ4Snrmn+tA4XSki+me7nqeX1zJtDWzcMBDvpkk/mp/xV0pLZZwGVLtTBcAy9c8zlOIh5ude2sXyNN3dLcCk7Jm/TSPGf+zmXovVUDSnkfIH1bgN83O0g1HITnoEQG894l481bA2D6xUKUt2ZAgMBAAECggEBAJlzS2ih/RV5On54AyOAplx0afeJO0EoaxJW8nL/q8+hOIqgeNZ4Taz7oY4O1U8Ytt8Cj7sF6U+gVg72RvJW8LXSBTuFtCvEdNnaqf6EkK7Q5OSrmscJaLlXTtOF7/I5U6ZfKdvmVzr98Cv+b0wA9zfh8hoK4HwcDmzXw4WQhPbqvp47HPrmq/cCfAVR0cD/T6ZlS1zWU/6xXz9vIA9GmXiO+xrVD5TS5i4DVgZL+uY4a/IJkP/FmQL8lu9mMcR3EZ2SRQD3FZysF7OoWfT7/L03qCj/32RegwA8FPQsyYOAos0m1J5Cp+fUGF9HnqNohBoRcDuh0DYY0pc9PQq/MAECgYEA3oPpuLQLM+AA1LBwlLeK0UaxQ3hQtaLmSwOtMVPrCqe9NavzJPzhaYeUT6+QPeDhl+/zwuPV2NqjG6kdnX66BCDTp6zy8BFs3yzTazOp6hhi2RlzWGeCAhcjmbR4+YMOQx5RW4MocRycu5dTMnOJU3aDZJQd5AoxtXhkW7VsCIECgYEAzxD1SU2ApRlNT2FZ5ZaKg2zEqh/Q+iLB3ORra8n1EyxIl/smS33+L1Qd0z/tnlLu6Hr+nYAtnhTgssFTPXq2X0+CURQA85mlQ+W8pstsckXHl+5ZYeqRaE+A5irimFJVNS8iU751HlvxrsgpmnkkqoS7pgIZeYFIj93boN25iRkCgYBzxKvoBfxCHAwynC2moiueICp/0Owk5EDuzFXicSe7XnQJpZGWL99TGU/neY8RMpwMgbIQNpt+/JmZ/Y3D8Df1h+K2vTuT/WzoXBkPEE0Z12AuVZh2aTvxvHowMP4zyqSz9OUdOIrk9p7w1pVZjVToUKOhw5Idn9Qm9yE3uZcggQKBgFNVKNIKXdaT2zgyHqK2NiJ0OKWazliMemayisTDb1z6+nAnxB6now9bE/G7jZ6lE77+GNA8EJ/JGTD3es+IPjMXZYPJwCRJVmh/4a9iuM84Y/4yD0jHxSMss9xtr+nLYL1Zrb/0K2A/coF7zrp7PJVfe8FwoN30eMZlbAlOkmepAoGBAIHPHBIgfSaUJziqqrlqygbZkMhN69k8C5chQJCEl8JfTlr+aX7Gz2+pWpuQoE/JVAZO8w5p608TIavZuy5bANJ0RnDg6EVWuvzpMw92G9OPV30dCy+WmEHaoEkvtl7kIpHdxN0MCFVM7eY14qcxB4p1eRWgJZFBQLa3GuGK5GVX" |
| } |
| ] |
| } |
| }, |
| "ietf-netconf-server:netconf-server": { |
| "listen": { |
| "endpoint": [ |
| { |
| "name": "default-ssh", |
| "ssh": { |
| "tcp-server-parameters": { |
| "local-address": "::", |
| "keepalives": { |
| "idle-time": 1, |
| "max-probes": 10, |
| "probe-interval": 5 |
| } |
| }, |
| "ssh-server-parameters": { |
| "server-identity": { |
| "host-key": [ |
| { |
| "name": "default-key", |
| "public-key": { |
| "keystore-reference": "genkey" |
| } |
| } |
| ] |
| }, |
| "client-authentication": { |
| "supported-authentication-methods": { |
| "publickey": [null], |
| "passsword": [null], |
| "other": [ |
| "interactive" |
| ] |
| } |
| } |
| } |
| } |
| } |
| ] |
| } |
| }, |
| "ietf-netconf-acm:nacm": { |
| "rule-list": [ |
| { |
| "name": "Permit yangnobody user/group to read only some modules", |
| "group": [ |
| "yangnobody" |
| ], |
| "rule": [ |
| { |
| "name": "czechlight-roadm-device", |
| "module-name": "czechlight-roadm-device", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-inline-amp", |
| "module-name": "czechlight-inline-amp", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-bidi-amp", |
| "module-name": "czechlight-bidi-amp", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-coherent-add-drop", |
| "module-name": "czechlight-coherent-add-drop", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-yang-library", |
| "module-name": "ietf-yang-library", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-hardware", |
| "module-name": "ietf-hardware", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-interfaces", |
| "module-name": "ietf-interfaces", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-system: contact", |
| "module-name": "ietf-system", |
| "action": "permit", |
| "path": "/ietf-system:system/contact", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-system: hostname", |
| "module-name": "ietf-system", |
| "action": "permit", |
| "path": "/ietf-system:system/hostname", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-system: location", |
| "module-name": "ietf-system", |
| "action": "permit", |
| "path": "/ietf-system:system/location", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-system: clock", |
| "module-name": "ietf-system", |
| "action": "permit", |
| "path": "/ietf-system:system/clock", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-system: system-state", |
| "module-name": "ietf-system", |
| "action": "permit", |
| "path": "/ietf-system:system-state", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-lldp", |
| "module-name": "czechlight-lldp", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-system:firmware", |
| "module-name": "czechlight-system", |
| "path": "/czechlight-system:firmware", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "czechlight-system:leds", |
| "module-name": "czechlight-system", |
| "path": "/czechlight-system:leds", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "ietf-restconf-monitoring", |
| "module-name": "ietf-restconf-monitoring", |
| "action": "permit", |
| "access-operations": "read" |
| }, |
| { |
| "name": "wildcard-deny", |
| "module-name": "*", |
| "action": "deny", |
| "access-operations": "*" |
| } |
| ] |
| }, |
| { |
| "name": "Allow DWDM control to the optics group", |
| "group": [ |
| "optics" |
| ], |
| "rule": [ |
| { |
| "name": "czechlight-roadm-device", |
| "module-name": "czechlight-roadm-device", |
| "action": "permit" |
| }, |
| { |
| "name": "czechlight-inline-amp", |
| "module-name": "czechlight-inline-amp", |
| "action": "permit" |
| }, |
| { |
| "name": "czechlight-bidi-amp", |
| "module-name": "czechlight-bidi-amp", |
| "action": "permit" |
| }, |
| { |
| "name": "czechlight-coherent-add-drop", |
| "module-name": "czechlight-coherent-add-drop", |
| "action": "permit" |
| }, |
| { |
| "name": "czechlight-calibration-device", |
| "module-name": "czechlight-calibration-device", |
| "action": "permit" |
| } |
| ] |
| }, |
| { |
| "name": "Authentication details of current user", |
| "group": [ |
| "*" |
| ], |
| "rule": [ |
| { |
| "name": "Allow reading and executing actions in the context of the current user", |
| "access-operations": "read exec", |
| "module-name": "czechlight-system", |
| "action": "permit", |
| "path": "/czechlight-system:authentication/users[name=$USER]" |
| } |
| ] |
| } |
| ] |
| } |
| } |