Refactored permission.xml of android webapp

components/mobile-plugins/android-plugin/org.wso2.carbon.device.mgt.mobile.android.api/src/main/webapp/META-INF/permissions.xml

@@ -19,7 +19,7 @@
 
 <!-- This file contains the list of permissions that are associated with URL end points
     of the web app. Each permission should contain the name, permission path, API path
-    (URL) , HTTP method and authorization scope (OAuth2).
+    (URL) and HTTP method.
     When defining dynamic paths for APIs, path variables are denoted by '*' notation.
     For ex:
     Actual API endpoint: mdm-android-agent/1.0.0/operation/{device-id}
@@ -29,368 +29,266 @@
 -->
 <PermissionConfiguration>
     <APIVersion></APIVersion>
-    <!-- Operations management related permissions for admin -->
 
+    <!-- Configuration related permissions -->
 
     <Permission>
-        <name>Lock</name>
+        <name>View Tenant configuration</name>
-        <path>/device-mgt/admin/operations/android/lock</path>
+        <path>/device-mgt/admin/platform-configs/view</path>
-        <url>/admin/devices/lock-devices</url>
+        <url>/configuration</url>
-        <method>POST</method>
+        <method>GET</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Unlock</name>
+        <name>Add Tenant configuration</name>
-        <path>/device-mgt/admin/operations/android/unlock</path>
+        <path>/device-mgt/admin/platform-configs/add</path>
-        <url>/admin/devices/unlock-devices</url>
+        <url>/configuration</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Mute</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/mute</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/mute</url>
+        <url>/configuration/license</url>
-        <method>POST</method>
+        <method>GET</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
-    <Permission>
+    <!-- End of Configuration related permissions -->
-        <name>Location</name>
-        <path>/device-mgt/admin/operations/android/location</path>
-        <url>/admin/devices/location</url>
-        <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
-    </Permission>
 
-    <Permission>
+    <!-- Device related permissions -->
-        <name>Clear Passcode</name>
-        <path>/device-mgt/admin/operations/android/clear-password</path>
-        <url>/admin/devices/clear-password</url>
-        <method>POST</method>
-        <scope>emm_admin</scope>
-    </Permission>
 
     <Permission>
-        <name>Camera</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/camera</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/control-camera</url>
+        <url>/devices</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Device Info</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/device-info</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/info</url>
+        <url>/devices/*</url>
-        <method>POST</method>
+        <method>DELETE</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Enterprise Wipe</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/enterprise-wipe</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/enterprise-wipe</url>
+        <url>/devices/*</url>
-        <method>POST</method>
+        <method>PUT</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Wipe Data</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/wipe-data</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/wipe</url>
+        <url>/device/*/applications</url>
-        <method>POST</method>
+        <method>PUT</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Application List</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/application-list</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/applications</url>
+        <url>/device/*/pending-operations</url>
-        <method>POST</method>
+        <method>PUT</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Ring</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/ring-device</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/ring</url>
+        <url>/device/*/status</url>
-        <method>POST</method>
+        <method>GET</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
-    <Permission>
+    <!-- End of device related permissions -->
-        <name>Reboot</name>
-        <path>/device-mgt/admin/operations/android/reboot-device</path>
-        <url>/admin/devices/reboot</url>
-        <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
-    </Permission>
 
-    <Permission>
+    <!-- Event related permissions -->
-        <name>Upgrade Firmware</name>
-        <path>/device-mgt/admin/operations/android/upgrade-firmware</path>
-        <url>/admin/devices/upgrade-firmware</url>
-        <method>POST</method>
-        <scope>emm_admin</scope>
-    </Permission>
 
     <Permission>
-        <name>Configure VPN</name>
+        <name>Enroll</name>
-        <path>/device-mgt/admin/operations/android/vpn</path>
+        <path>/device-mgt/user/device/android/enroll</path>
-        <url>/admin/devices/configure-vpn</url>
+        <url>/events/publish</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Install Application</name>
+        <name>View Events</name>
-        <path>/device-mgt/android/operations/install-application</path>
+        <path>/device-mgt/admin/events/view</path>
-        <url>/admin/devices/install-application</url>
+        <url>/events/publish</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
-    <Permission>
+    <!-- End of event related permissions -->
-        <name>Update Application</name>
+
-        <path>/device-mgt/admin/operations/android/install-application</path>
+    <!-- Operations related permissions -->
-        <url>/admin/devices/update-application</url>
-        <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
-    </Permission>
 
     <Permission>
-        <name>Uninstall Application</name>
+        <name>Get installed applications</name>
-        <path>/device-mgt/admin/operations/android/uninstall-application</path>
+        <path>/device-mgt/admin/device/android/operation/get-installed-applications</path>
-        <url>/admin/devices/uninstall-application</url>
+        <url>/admin/devices/applications</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Blacklist Applications</name>
+        <name>Blacklist applications</name>
-        <path>/device-mgt/admin/operations/android/blacklist-applications</path>
+        <path>/device-mgt/admin/device/android/operation/blacklist-applications</path>
         <url>/admin/devices/blacklist-applications</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Notification</name>
+        <name>Change lock code</name>
-        <path>/device-mgt/admin/operations/android/notification</path>
+        <path>/device-mgt/admin/device/android/operation/change-lock-code</path>
-        <url>/admin/devices/send-notification</url>
+        <url>/admin/devices/change-lock-code</url>
         <method>POST</method>
-        <scope>emm_admin,emm_user</scope>
     </Permission>
 
     <Permission>
-        <name>Wifi</name>
+        <name>Clear password</name>
-        <path>/device-mgt/admin/operations/android/wifi</path>
+        <path>/device-mgt/admin/device/android/operation/clear-password</path>
-        <url>/admin/devices/configure-wifi</url>
+        <url>/admin/devices/clear-password</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Encryption</name>
+        <name>Configure VPN</name>
-        <path>/device-mgt/admin/operations/android/encrypt</path>
+        <path>/device-mgt/admin/device/android/operation/configure-vpn</path>
-        <url>/admin/devices/encrypt-storage</url>
+        <url>/admin/devices/configure-vpn</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Change lock code</name>
+        <name>Configure WiFi</name>
-        <path>/device-mgt/admin/operations/android/change-lock-code</path>
+        <path>/device-mgt/admin/device/android/operation/configure-wifi</path>
-        <url>/admin/devices/change-lock-code</url>
+        <url>/admin/devices/configure-wifi</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Password Policy</name>
+        <name>Control camera</name>
-        <path>/device-mgt/admin/operations/android/password-policy</path>
+        <path>/device-mgt/admin/device/android/operation/control-camera</path>
-        <url>/admin/devices/set-password-policy</url>
+        <url>/admin/devices/control-camera</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Webclip</name>
+        <name>Encrypt storage</name>
-        <path>/device-mgt/admin/operations/android/webclip</path>
+        <path>/device-mgt/admin/device/android/operation/encrypt-storage</path>
-        <url>/admin/devices/set-webclip</url>
+        <url>/admin/devices/encrypt-storage</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Disenroll</name>
+        <name>Enterprise wipe</name>
-        <path>/device-mgt/admin/operations/android/disenroll</path>
+        <path>/device-mgt/admin/device/android/operation/enterprise-wipe</path>
-        <url>/operation/disenroll</url>
+        <url>/admin/devices/enterprise-wipe</url>
         <method>POST</method>
-        <scope>emm_android_agent</scope>
-    </Permission>
-
-    <!-- Device management related permissions -->
-    <Permission>
-        <name>View devices</name>
-        <path>/device-mgt/admin/devices/view</path>
-        <url>/device</url>
-        <method>GET</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>View device</name>
+        <name>Get device info</name>
-        <path>/device-mgt/admin/devices/view</path>
+        <path>/device-mgt/admin/device/android/operation/get-info</path>
-        <url>/device/*</url>
+        <url>/admin/devices/info/url>
-        <method>GET</method>
-        <scope>emm_admin,emm_user</scope>
-    </Permission>
-
-    <Permission>
-        <name>Update device</name>
-        <path>/device-mgt/admin/devices/update</path>
-        <url>/device/*</url>
-        <method>PUT</method>
-        <scope>emm_admin,emm_user</scope>
-    </Permission>
-
-    <Permission>
-        <name>Update application list</name>
-        <path>/device-mgt/admin/operations/android/update-applist</path>
-        <url>/device/appList/*</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>View license</name>
+        <name>Install application</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/install-application</path>
-        <url>/configuration/license</url>
+        <url>/admin/devices/install-application</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
-    <!-- Enrollment related permissions -->
     <Permission>
-        <name>Enroll device</name>
+        <name>Get location details</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/location</path>
-        <url>/devices</url>
+        <url>/admin/devices/location</url>
         <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Devices related Operations</name>
+        <name>Lock device</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/lock-device</path>
-        <url>/devices/*</url>
+        <url>/admin/devices/lock-devices</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Device is enrolled</name>
+        <name>Mute device</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/mute</path>
-        <url>/devices/*/status</url>
+        <url>/admin/devices/mute</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Devices related Operations</name>
+        <name>Reboot device</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/reboot</path>
-        <url>/devices/*/pending-operations</url>
+        <url>/admin/devices/reboot</url>
-        <method>PUT</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Modify devices</name>
+        <name>Ring device</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/ring</path>
-        <url>/devices/*</url>
+        <url>/admin/devices/ring</url>
-        <method>PUT</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Delete devices</name>
+        <name>Send notification</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/send-notification</path>
-        <url>/devices/*</url>
+        <url>/admin/devices/send-notification</url>
-        <method>DELETE</method>
+        <method>POST</method>
-        <scope>emm_android_agent</scope>
     </Permission>
 
     <Permission>
-        <name>Update Enrollment</name>
+        <name>Set password policy</name>
-        <path>/device-mgt/android/devices/enroll</path>
+        <path>/device-mgt/admin/device/android/operation/set-password-policy</path>
-        <url>/enrollment/*</url>
+        <url>/admin/devices/set-password-policy</url>
-        <method>PUT</method>
+        <method>POST</method>
-        <scope>emm_user,emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Disenroll device</name>
+        <name>Set web clip</name>
-        <path>/device-mgt/android/devices/enroll</path>
+        <path>/device-mgt/admin/device/android/operation/set-webclip</path>
-        <url>/enrollment/*</url>
+        <url>/admin/devices/set-webclip</url>
-        <method>DELETE</method>
+        <method>POST</method>
-        <scope>emm_user,emm_admin</scope>
     </Permission>
 
-    <!-- Policy related permissions -->
     <Permission>
-        <name>View Policies</name>
+        <name>Uninstall application</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/uninstall-application</path>
-        <url>/policy/*</url>
+        <url>/admin/devices/uninstall-application</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>View Policy Features</name>
+        <name>Unlock device</name>
-        <path>/device-mgt/user/enroll/android</path>
+        <path>/device-mgt/admin/device/android/operation/unlock-device</path>
-        <url>/policy/features/*</url>
+        <url>/admin/devices/unlock-devices</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
-    <!-- Configuration related permissions -->
     <Permission>
-        <name>View Tenant configuration</name>
+        <name>Update applications</name>
-        <path>/device-mgt/admin/platform-configs/view</path>
+        <path>/device-mgt/admin/device/android/operation/update-application</path>
-        <url>/configuration</url>
+        <url>/admin/devices/update-application</url>
-        <method>GET</method>
+        <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Add Tenant configuration</name>
+        <name>Upgrade firmware</name>
-        <path>/device-mgt/admin/platform-configs/add</path>
+        <path>/device-mgt/admin/device/android/operation/upgrade-firmware</path>
-        <url>/configuration</url>
+        <url>/admin/devices/upgrade-firmware</url>
         <method>POST</method>
-        <scope>emm_admin</scope>
     </Permission>
 
     <Permission>
-        <name>Update Tenant configuration</name>
+        <name>Wipe device</name>
-        <path>/device-mgt/admin/platform-configs/modify</path>
+        <path>/device-mgt/admin/device/android/operation/wipe</path>
-        <url>/configuration</url>
+        <url>/admin/devices/wipe</url>
-        <method>PUT</method>
-        <scope>emm_admin</scope>
-    </Permission>
-    <Permission>
-        <name>Event Addition</name>
-        <path>/device-mgt/android/events/add</path>
-        <url>/events/publish</url>
         <method>POST</method>
-        <scope>emm_user,emm_admin</scope>
-    </Permission>
-    <Permission>
-        <name>Event Retrieve</name>
-        <path>/device-mgt/android/events/view</path>
-        <url>/events</url>
-        <method>GET</method>
-        <scope>emm_admin</scope>
     </Permission>
+
+    <!-- End of operation related permissions -->
+
 </PermissionConfiguration>