keycloak-scim/authorization_services/topics/policy-client-policy.adoc

[[_policy_client]]
= Client-based policy

You can use this type of policy to define conditions for your permissions where a set of one or more clients is permitted to access an object.

ifeval::[{project_community}==true]
To create a new client-based policy, select *Client* from the policy type list.
endif::[]
ifeval::[{project_product}==true]
To create a new client-based policy, select *Client* in the item list in the upper right corner of the policy listing.
endif::[]

.Add a Client Policy
image:{project_images}/policy/create-client.png[alt="Add a Client Policy"]

== Configuration

* *Name*
+
A human-readable and unique string identifying the policy. A best practice is to use names that are closely related to your business and security requirements, so you
can identify them more easily.
+
* *Description*
+
A string containing details about this policy.
+
* *Clients*
+
Specifies which clients have givenGroup-based policy access by this policy.
+
* *Logic*
+
The logic of this policy to apply after the other conditions have been evaluated.

[role="_additional-resources"]
.Additional resources
* <<_policy_logic, Positive and negative logic>>
Some updates and fixes 2017-04-25 22:52:57 +00:00			`[[_policy_client]]`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`= Client-based policy`
Some updates and fixes 2017-04-25 22:52:57 +00:00
			`You can use this type of policy to define conditions for your permissions where a set of one or more clients is permitted to access an object.`

Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00			`ifeval::[{project_community}==true]`
			`To create a new client-based policy, select Client from the policy type list.`
			`endif::[]`
			`ifeval::[{project_product}==true]`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`To create a new client-based policy, select Client in the item list in the upper right corner of the policy listing.`
Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00			`endif::[]`
Some updates and fixes 2017-04-25 22:52:57 +00:00
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`.Add a Client Policy`
Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00			`image:{project_images}/policy/create-client.png[alt="Add a Client Policy"]`
Some updates and fixes 2017-04-25 22:52:57 +00:00
Convert Authorization Service to a flat topic structure (#212) * Convert Authorization Service to a flat topic structure * Fix issue with toc being cut 2017-10-09 06:38:46 +00:00			`== Configuration`
Some updates and fixes 2017-04-25 22:52:57 +00:00
			`* Name`
			`+`
			`A human-readable and unique string identifying the policy. A best practice is to use names that are closely related to your business and security requirements, so you`
			`can identify them more easily.`
			`+`
			`* Description`
			`+`
			`A string containing details about this policy.`
			`+`
			`* Clients`
			`+`
Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00			`Specifies which clients have givenGroup-based policy access by this policy.`
Some updates and fixes 2017-04-25 22:52:57 +00:00			`+`
			`* Logic`
			`+`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`The logic of this policy to apply after the other conditions have been evaluated.`

			`[role="_additional-resources"]`
			`.Additional resources`
			`* <<_policy_logic, Positive and negative logic>>`