keycloak-scim/topics/policy-evaluation-tool/overview.adoc

== Policy Evaluation Tool

When designing your policies, you can simulate authorization requests to check how your policies are being evaluated.

The *Policy Evaluation Tool* can be accessed by clicking the `Evaluate` tab when editing a resource server. There you may provide different inputs to simulate real authorization requests and check the effect of your policies.

image:../../images/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]

=== Providing Identity Information

The *Identity Information* filters can be used to specify the user asking for permissions.

You can also click *Entitlement* button to obtain all permissions for the user your selected.

=== Providing Contextual Information

The *Contextual Information* filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.

=== Providing the Permissions

The *Permissions* filters can be used to build an authorization request. There you can ask for permissions for a set of one or more resources and scopes. In case you want
to simulate authorization requests based on all protected resources and scopes, click on the `Add` button without provide any `Resources` and `Scopes`.


When you've filled in the necessary values, click the `Evaluate` button to yield a result.
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00			`== Policy Evaluation Tool`

[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00			`When designing your policies, you can simulate authorization requests to check how your policies are being evaluated.`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
More screenshots. Reviewing getting started tutorials. 2016-06-14 23:50:50 +00:00			The Policy Evaluation Tool can be accessed by clicking the `Evaluate` tab when editing a resource server. There you may provide different inputs to simulate real authorization requests and check the effect of your policies.
More doc 2016-06-05 22:17:31 +00:00
			`image:../../images/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]`

			`=== Providing Identity Information`

			`The Identity Information filters can be used to specify the user asking for permissions.`

			`You can also click Entitlement button to obtain all permissions for the user your selected.`

			`=== Providing Contextual Information`

[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00			`The Contextual Information filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing the Permissions`

[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00			`The Permissions filters can be used to build an authorization request. There you can ask for permissions for a set of one or more resources and scopes. In case you want`
			to simulate authorization requests based on all protected resources and scopes, click on the `Add` button without provide any `Resources` and `Scopes`.


			When you've filled in the necessary values, click the `Evaluate` button to yield a result.