keycloak-scim/authorization_services/topics/policy/client-policy.adoc

28 lines
902 B
Text
Raw Normal View History

2017-04-25 22:52:57 +00:00
[[_policy_client]]
=== Client-Based Policy
You can use this type of policy to define conditions for your permissions where a set of one or more clients is permitted to access an object.
To create a new client-based policy, select *Client* in the dropdown list in the upper right corner of the policy listing.
.Add a Client-Based Policy
2017-08-28 12:50:14 +00:00
image:{project_images}/policy/create-client.png[alt="Add Client-Based Policy"]
2017-04-25 22:52:57 +00:00
==== Configuration
* *Name*
+
A human-readable and unique string identifying the policy. A best practice is to use names that are closely related to your business and security requirements, so you
can identify them more easily.
+
* *Description*
+
A string containing details about this policy.
+
* *Clients*
+
Specifies which clients are given access by this policy.
+
* *Logic*
+
2017-08-28 12:50:14 +00:00
The <<_policy_logic, Logic>> of this policy to apply after the other conditions have been evaluated.