keycloak-scim/docs/documentation/authorization_services/topics/policy-time-policy.adoc

[[_policy_time]]
= Time-based policy

You can use this type of policy to define time conditions for your permissions.

To create a new time-based policy, select *Time* in the item list in the upper right corner of the policy listing.

.Add Time Policy
image:images/policy/create-time.png[alt="Add Time Policy"]

== Configuration

* *Name*
+
A human-readable and unique string describing the policy. A best practice is to use names that are closely related to your business and security requirements, so you
can identify them more easily.
+
* *Description*
+
A string containing details about this policy.
+
* *Start time*
+
Defines the time before which access must *not* be granted. Permission is granted only if the current date/time is later than or equal to this value.
* *Expire time*
+
Defines the time after which access must *not* be granted. Permission is granted only if the current date/time is earlier than or equal to this value. Select *Repeat* to repeat access being granted on a specific *Day of Month*, *Month*, *Year*, *Hour* or *Minute*.

* *Day of Month*
+
Defines the day of month that access must be granted. You can also specify a range of dates. In this case, permission is granted only if the current day of the month is between or equal to the two values specified.
* *Month*
+
Defines the month that access must be granted. You can also specify a range of months. In this case, permission is granted only if the current month is between or equal to the two values specified.
* *Year*
+
Defines the year that access must be granted. You can also specify a range of years. In this case, permission is granted only if the current year is between or equal to the two values specified.
* *Hour*
+
Defines the hour that access must be granted. You can also specify a range of hours. In this case, permission is granted only if current hour is between or equal to the two values specified.
* *Minute*
+
Defines the minute that access must be granted. You can also specify a range of minutes. In this case, permission is granted only if the current minute is between or equal to the two values specified.
* *Logic*
+
The logic of this policy to apply after the other conditions have been evaluated.

Access is only granted if all conditions are satisfied. {project_name} will perform an _AND_ based on the outcome of each condition.

[role="_additional-resources"]
.Additional resources
* <<_policy_logic, Positive and negative logic>>
[RHSSO-599] - Replacing link with fake 2016-11-29 15:30:53 +00:00			`[[_policy_time]]`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`= Time-based policy`
More doc 2016-06-05 22:17:31 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`You can use this type of policy to define time conditions for your permissions.`
More doc 2016-06-05 22:17:31 +00:00
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`To create a new time-based policy, select Time in the item list in the upper right corner of the policy listing.`
More screenshots. Reviewing getting started tutorials. 2016-06-14 23:50:50 +00:00
			`.Add Time Policy`
Preparing Securing Apps and Authorization Services Guide for RHBK (#1684) Closes #1682 2022-10-13 20:14:20 +00:00			`image:images/policy/create-time.png[alt="Add Time Policy"]`
More screenshots. Reviewing getting started tutorials. 2016-06-14 23:50:50 +00:00
Convert Authorization Service to a flat topic structure (#212) * Convert Authorization Service to a flat topic structure * Fix issue with toc being cut 2017-10-09 06:38:46 +00:00			`== Configuration`
More screenshots. Reviewing getting started tutorials. 2016-06-14 23:50:50 +00:00
More doc 2016-06-05 22:17:31 +00:00			`* Name`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`A human-readable and unique string describing the policy. A best practice is to use names that are closely related to your business and security requirements, so you`
			`can identify them more easily.`
More doc 2016-06-05 22:17:31 +00:00			`+`
			`* Description`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`A string containing details about this policy.`
More doc 2016-06-05 22:17:31 +00:00			`+`
Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00			`* Start time`
			`+`
			`Defines the time before which access must not be granted. Permission is granted only if the current date/time is later than or equal to this value.`
			`* Expire time`
			`+`
Preparing Securing Apps and Authorization Services Guide for RHBK (#1684) Closes #1682 2022-10-13 20:14:20 +00:00			`Defines the time after which access must not be granted. Permission is granted only if the current date/time is earlier than or equal to this value. Select Repeat to repeat access being granted on a specific Day of Month, Month, Year, Hour or Minute.`
Updating authorization_services for new admin console (#1572) Closes #1570 2022-07-25 20:36:51 +00:00
Fixes and updates. 2016-09-08 22:58:55 +00:00			`* Day of Month`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`Defines the day of month that access must be granted. You can also specify a range of dates. In this case, permission is granted only if the current day of the month is between or equal to the two values specified.`
Fixes and updates. 2016-09-08 22:58:55 +00:00			`* Month`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`Defines the month that access must be granted. You can also specify a range of months. In this case, permission is granted only if the current month is between or equal to the two values specified.`
Fixes and updates. 2016-09-08 22:58:55 +00:00			`* Year`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`Defines the year that access must be granted. You can also specify a range of years. In this case, permission is granted only if the current year is between or equal to the two values specified.`
Fixes and updates. 2016-09-08 22:58:55 +00:00			`* Hour`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`Defines the hour that access must be granted. You can also specify a range of hours. In this case, permission is granted only if current hour is between or equal to the two values specified.`
Fixes and updates. 2016-09-08 22:58:55 +00:00			`* Minute`
			`+`
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`Defines the minute that access must be granted. You can also specify a range of minutes. In this case, permission is granted only if the current minute is between or equal to the two values specified.`
More doc 2016-06-05 22:17:31 +00:00			`* Logic`
			`+`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00			`The logic of this policy to apply after the other conditions have been evaluated.`
Fixes and updates. 2016-09-08 22:58:55 +00:00
Convert Authorization Service to a flat topic structure (#212) * Convert Authorization Service to a flat topic structure * Fix issue with toc being cut 2017-10-09 06:38:46 +00:00			`Access is only granted if all conditions are satisfied. {project_name} will perform an _AND_ based on the outcome of each condition.`
KEYCLOAK-16923-FIX Revising Authorization Services Guide for Red Hat Standards (#1358) 2022-04-18 14:10:57 +00:00
			`[role="_additional-resources"]`
			`.Additional resources`
			`* <<_policy_logic, Positive and negative logic>>`