keycloak-scim/topics/overview/overview.adoc

== Overview

{{book.project.name}} supports fine-grained authorization policies with a mix and match of different access control
mechanisms such as:

* **Attribute-based Access Control**
* **Role-based Access Control**
* **User-based Access Control**
* **Context-based Access Control**
* **Rule-based Access Control**
    ** Using Javascript
    ** Using JBoss Drools
* **Support for custom ACMs through a Policy Provider SPI**

Being based on a set of administrative UIs and a RESTful API, {{book.project.name}} provides the necessary means to create permissions
for your protected resources and scopes, associate these permissions with authorization policies and enforce authorization
decisions in your application and services.

Considering that today we need to consider a very heterogeneous environment, where users are distributed across different regions, with different local policies,
using different devices and with a high demand for information sharing, Keycloak Authorization Services provides:

* Resource protection using fine-grained authorization policies and different access control mechanisms
* Centralized Resource, Permission and Policy Management
* Centralized Policy Decision Point
* REST security based on a set of REST-based Authorization Services
* Authorization Workflows and User-Managed Access
* The necessary means to avoid code replication across projects(and redeploys) and quickly adapt to changes in your security requirements
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00			`== Overview`

More architecture overview. 2016-06-01 22:36:22 +00:00			`{{book.project.name}} supports fine-grained authorization policies with a mix and match of different access control`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00			`mechanisms such as:`

			`* Attribute-based Access Control`
			`* Role-based Access Control`
			`* User-based Access Control`
			`* Context-based Access Control`
			`* Rule-based Access Control`
			`** Using Javascript`
			`** Using JBoss Drools`
			`* Support for custom ACMs through a Policy Provider SPI`

			`Being based on a set of administrative UIs and a RESTful API, {{book.project.name}} provides the necessary means to create permissions`
			`for your protected resources and scopes, associate these permissions with authorization policies and enforce authorization`
			`decisions in your application and services.`

			`Considering that today we need to consider a very heterogeneous environment, where users are distributed across different regions, with different local policies,`
More doc 2016-06-05 22:17:31 +00:00			`using different devices and with a high demand for information sharing, Keycloak Authorization Services provides:`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00
More doc 2016-06-05 22:17:31 +00:00			`* Resource protection using fine-grained authorization policies and different access control mechanisms`
More architecture overview. 2016-06-01 22:36:22 +00:00			`* Centralized Resource, Permission and Policy Management`
More doc 2016-06-05 22:17:31 +00:00			`* Centralized Policy Decision Point`
			`* REST security based on a set of REST-based Authorization Services`
First bucket of documentation from docbook. 2016-05-31 20:36:14 +00:00			`* Authorization Workflows and User-Managed Access`
More doc 2016-06-05 22:17:31 +00:00			`* The necessary means to avoid code replication across projects(and redeploys) and quickly adapt to changes in your security requirements`