<!-- 
  Configure ImageMagick policies.

  Domains include system, delegate, coder, filter, path, or resource.

  Rights include none, read, write, execute and all.  Use | to combine them,
  for example: "read | write" to permit read from, or write to, a path.

  Use a glob expression as a pattern.

  Suppose we do not want users to process MPEG video images:

    <policy domain="delegate" rights="none" pattern="mpeg:decode" />
    
  Here we do not want users reading images from HTTP:

    <policy domain="coder" rights="none" pattern="HTTP" />

  The /repository file system is restricted to read only.  We use a glob
  expression to match all paths that start with /repository:

    <policy domain="path" rights="read" pattern="/repository/*" />

  Lets prevent users from executing any image filters:

    <policy domain="filter" rights="none" pattern="*" />

  Any large image is cached to disk rather than memory:

    <policy domain="resource" name="area" value="1GP"/>

  Define arguments for the memory, map, area, width, height and disk resources
  with SI prefixes (.e.g 100MB).  In addition, resource policies are maximums
  for each instance of ImageMagick (e.g. policy memory limit 1GB, -limit 2GB
  exceeds policy maximum so memory limit is 1GB).

   Rules are processed in order.  Here we want to restrict ImageMagick to only
  read or write a small subset of proven web-safe image types:

    <policy domain="delegate" rights="none" pattern="*" />
    <policy domain="filter" rights="none" pattern="*" />
    <policy domain="coder" rights="none" pattern="*" />
    <policy domain="coder" rights="read|write" pattern="{GIF,JPEG,PNG,WEBP}" />
 -->
<policymap xmlns="">
  <!-- Resource limits - increased for handling larger files -->
  <policy domain="resource" name="memory" value="2GiB"/>
  <policy domain="resource" name="map" value="4GiB"/>
  <policy domain="resource" name="width" value="100KP"/>
  <policy domain="resource" name="height" value="100KP"/>
  <policy domain="resource" name="area" value="2GB"/>
  <policy domain="resource" name="disk" value="16EB"/>
  <policy domain="resource" name="file" value="768"/>
  <policy domain="resource" name="thread" value="4"/>
  <policy domain="resource" name="throttle" value="0"/>
  <policy domain="resource" name="time" value="3600"/>
  
  <!-- Allow ALL coders (image formats) with read and write permissions -->
  <policy domain="coder" rights="read|write" pattern="*" />
  
  <!-- Allow Ghostscript formats (already enabled, but keeping for completeness) -->
  <policy domain="coder" rights="read|write" pattern="{PS,PS2,PS3,EPS,PDF,XPS}" />
  
  <!-- Allow common image formats -->
  <policy domain="coder" rights="read|write" pattern="{JPEG,JPG,PNG,GIF,BMP,TIFF,TIF,WEBP,ICO,ICNS,SVG}" />
  
  <policy domain="coder" rights="read|write" pattern="SVG" />
  <policy domain="coder" rights="read|write" pattern="SVGZ" />

<!-- Allow MVG (needed for internal renderer) -->
  <policy domain="coder" rights="read|write" pattern="MVG" />

<!-- Allow XML (SVG is XML-based) -->
  <policy domain="coder" rights="read|write" pattern="XML" />

<!-- Allow delegates to run (for Inkscape/RSVG) -->
  <policy domain="delegate" rights="execute" pattern="*" />
  
  <!-- Allow video formats (if ImageMagick is compiled with video support) -->
  <policy domain="coder" rights="read|write" pattern="{MP4,AVI,MOV,WMV,FLV,MKV}" />
  
  <!-- Allow raw camera formats -->
  <policy domain="coder" rights="read|write" pattern="{DNG,CR2,NEF,ARW,RAF,ORF}" />
  
  <!-- Allow document formats -->
  <policy domain="coder" rights="read|write" pattern="{DOC,XLS,PPT,RTF}" />
  
  <!-- Allow scientific formats -->
  <policy domain="coder" rights="read|write" pattern="{FITS,MHD,MHA,NIfTI}" />
  
  <!-- Allow delegate programs to execute (needed for some conversions) -->
  <policy domain="delegate" rights="execute" pattern="*" />
  
  <!-- Allow HTTPS and HTTP delegates (for fetching remote images) -->
  <policy domain="delegate" rights="execute" pattern="HTTPS"/>
  <policy domain="delegate" rights="execute" pattern="HTTP"/>
  <policy domain="delegate" rights="execute" pattern="URL"/>
  
  <!-- Allow reading from paths (needed for file operations) -->
  <policy domain="path" rights="read|write" pattern="@*"/>
  
  <!-- Allow filters -->
  <policy domain="filter" rights="read|write" pattern="*" />
  
  <!-- Cache settings -->
  <policy domain="cache" name="memory-map" value="anonymous"/>
  <policy domain="cache" name="synchronize" value="True"/>
  <policy domain="cache" name="shared-secret" value="passphrase" stealth="true"/>
  
  <!-- System settings -->
  <policy domain="system" name="shred" value="2"/>
  <policy domain="system" name="precision" value="6"/>
  <policy domain="system" name="memory-map" value="anonymous"/>
  <policy domain="system" name="max-memory-request" value="256MiB"/>
  <policy domain="system" name="pixel-cache-memory" value="anonymous"/>
  <policy domain="resource" name="temporary-path" value="/tmp"/>
  <policy domain="resource" name="list-length" value="128"/>
</policymap>