keycloak-scim/authorization_services/topics/policy/user-policy.adoc

28 lines
906 B
Text
Raw Normal View History

2016-11-29 15:30:53 +00:00
[[_policy_user]]
=== User-Based Policy
2016-06-05 22:17:31 +00:00
You can use this type of policy to define conditions for your permissions where a set of one or more users is permitted to access an object.
2016-06-05 22:17:31 +00:00
2017-04-25 22:52:57 +00:00
To create a new user-based policy, select *User* in the dropdown list in the upper right corner of the policy listing.
.Add a User-Based Policy
2017-01-05 16:54:31 +00:00
image:../../{{book.images}}/policy/create-user.png[alt="Add User-Based Policy"]
==== Configuration
2016-06-05 22:17:31 +00:00
* *Name*
+
A human-readable and unique string identifying the policy. A best practice is to use names that are closely related to your business and security requirements, so you
can identify them more easily.
2016-06-05 22:17:31 +00:00
+
* *Description*
+
A string containing details about this policy.
2016-06-05 22:17:31 +00:00
+
* *Users*
+
Specifies which users are given access by this policy.
2016-06-05 22:17:31 +00:00
+
* *Logic*
+
2016-11-29 15:30:53 +00:00
The <<fake/../logic.adoc#_policy_logic, Logic>> of this policy to apply after the other conditions have been evaluated.