# data for example domain 2

@keywords a.

@prefix owl: <http://www.w3.org/2002/07/owl#> .
@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
@prefix rbac:  <http:/dig.csail.mit.edu/2007/rowlbac/approach1/rbac#> .
@prefix ex:  <http:/dig.csail.mit.edu/2007/rowlbac/approach1/ex2domain#> .
@prefix :  <http:/dig.csail.mit.edu/2007/rowlbac/approach1/ex2data#> .

# possible roles
Mary a ex:Faculty, ex:Student. # if activated together dynamic separation of duty
Karen a ex:Student, ex:PrincipalInvestigater. # violation: static separtion of duty
Ted a ex:Faculty. 

PrintOnFacultyPrinter a rbac:Action.

# only faculty members have the permission to vote
PermittedPrintOnFacultyPrinter a rdfs:Class;
   rdfs:subClassOf rbac:PermittedAction;
   owl:equivalentClass [
      a owl:Class;
      owl:intersectionOf
        ( PrintOnFacultyPrinter 
             [ a owl:Restriction;
               owl:allValuesFrom ex:ActiveFaculty;
               owl:onProperty rbac:subject
             ]
         )
    ] .

#ends