renamed JavaSource -> java, WebContent -> webapp regarding to Maven convention

git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@392 4033779f-a91e-0410-96ef-6bf7bf53c507
2009-11-01 11:04:59 +00:00
parent 6cc4a44d86
commit f99fad493c
1033 changed files with 13 additions and 13 deletions
--- a/main/project/webapp/lesson_plans/English/AccessControlMatrix.html
+++ b/main/project/webapp/lesson_plans/English/AccessControlMatrix.html
@ -0,0 +1,9 @@
+<div align="Center">
+<p><b>Lesson Plan Title:</b> Using an Access Control Matrix</p>
+</div>
+<p><b>Concept / Topic To Teach:</b> </p>
+<!-- Start Instructions -->
+In a role-based access control scheme, a role represents a set of access permissions and privileges. A user can be assigned one or more roles. A role-based access control scheme normally consists of two parts: role permission management and role assignment. A broken role-based access control scheme might allow a user to perform accesses that are not allowed by his/her assigned roles, or somehow allow privilege escalation to an unauthorized role.  
+<p><b>General Goal(s):</b> </p>
+Each user is a member of a role that is allowed to access only certain resources. Your goal is to explore the access control rules that govern this site. Only the [Admin] group should have access to the 'Account Manager' resource.
+<!-- Stop Instructions -->