keycloak-scim/topics/policy-evaluation-tool/overview.adoc

== Policy Evaluation Tool

When designing your policies, you can simulate authorization requests to test how your policies are being evaluated.

You can access the Policy Evaluation Tool by clicking the `Evaluate` tab when editing a resource server. There you can specify different inputs to simulate real authorization requests and test the effect of your policies.

image:../../images/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]

=== Providing Identity Information

The *Identity Information* filters can be used to specify the user requesting permissions.

You can also click *Entitlement* to obtain all permissions for the user your selected.

=== Providing Contextual Information

The *Contextual Information* filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.

=== Providing the Permissions

The *Permissions* filters can be used to build an authorization request. You can request permissions for a set of one or more resources and scopes. If you want
to simulate authorization requests based on all protected resources and scopes, click *Add* without specifying any `Resources` or `Scopes`.

When you've specified your desired values, click *Evaluate*.
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00			`== Policy Evaluation Tool`

General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`When designing your policies, you can simulate authorization requests to test how your policies are being evaluated.`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			You can access the Policy Evaluation Tool by clicking the `Evaluate` tab when editing a resource server. There you can specify different inputs to simulate real authorization requests and test the effect of your policies.
More doc 2016-06-05 22:17:31 +00:00
			`image:../../images/policy-evaluation-tool.png[alt="Policy Evaluation Tool"]`

			`=== Providing Identity Information`

General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`The Identity Information filters can be used to specify the user requesting permissions.`
More doc 2016-06-05 22:17:31 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`You can also click Entitlement to obtain all permissions for the user your selected.`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing Contextual Information`

[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00			`The Contextual Information filters can be used to define additional attributes to the evaluation context, so that policies can obtain these same attributes.`
More doc 2016-06-05 22:17:31 +00:00
			`=== Providing the Permissions`

General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`The Permissions filters can be used to build an authorization request. You can request permissions for a set of one or more resources and scopes. If you want`
			to simulate authorization requests based on all protected resources and scopes, click Add without specifying any `Resources` or `Scopes`.
[KEYCLOAK-3546] - A lot of fixes and improvements to docs from srehorn. 2016-09-09 03:53:39 +00:00
General cleanup and edits of the documentation 2016-11-15 21:34:20 +00:00			`When you've specified your desired values, click Evaluate.`