keycloak-scim/authorization_services/topics/policy-evaluation-tool/overview.adoc

[[_policy_evaluation_overview]]
== Evaluating and Testing Policies

When designing your policies, you can simulate authorization requests to test how your policies are being evaluated.

You can access the Policy Evaluation Tool by clicking the `Evaluate` tab when editing a resource server. There you can specify different inputs to simulate real authorization requests and test the effect of your policies.

image:{project_images}/policy-evaluation-tool/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]

=== Providing Identity Information

The *Identity Information* filters can be used to specify the user requesting permissions.

You can also click *Entitlement* to obtain all permissions for the user you selected.

=== Providing Contextual Information

The *Contextual Information* filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.

=== Providing the Permissions

The *Permissions* filters can be used to build an authorization request. You can request permissions for a set of one or more resources and scopes. If you want
to simulate authorization requests based on all protected resources and scopes, click *Add* without specifying any `Resources` or `Scopes`.

When you've specified your desired values, click *Evaluate*.
[RHSSO-599] - Replacing link with fake 2016-11-29 15:30:53 +00:00			`[[_policy_evaluation_overview]]`
Updating titles to match summary 2016-12-02 15:25:43 +00:00			`== Evaluating and Testing Policies`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`When designing your policies, you can simulate authorization requests to test how your policies are being evaluated.`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			You can access the Policy Evaluation Tool by clicking the `Evaluate` tab when editing a resource server. There you can specify different inputs to simulate real authorization requests and test the effect of your policies.
More doc 2016-06-05 22:17:31 +00:00
Convert documentation to AsciiDoctor 2017-08-28 12:50:14 +00:00			`image:{project_images}/policy-evaluation-tool/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing Identity Information`

General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`The Identity Information filters can be used to specify the user requesting permissions.`
More doc 2016-06-05 22:17:31 +00:00
fixed RHSSO-936 2017-03-30 19:08:48 +00:00			`You can also click Entitlement to obtain all permissions for the user you selected.`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing Contextual Information`

[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00			`The Contextual Information filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing the Permissions`

General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`The Permissions filters can be used to build an authorization request. You can request permissions for a set of one or more resources and scopes. If you want`
			to simulate authorization requests based on all protected resources and scopes, click Add without specifying any `Resources` or `Scopes`.
[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`When you've specified your desired values, click Evaluate.`