libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions 6
keycloak-scim/docs/documentation/authorization_services/topics/policy-time-policy.adoc
Alexander Schwartz 4dcb819c06 Moving docs to new folder 
CIAM-5056
2023-03-20 09:07:58 +01:00

52 lines
2.4 KiB
Text
Raw Blame History

[[_policy_time]]
= Time-based policy
You can use this type of policy to define time conditions for your permissions.
To create a new time-based policy, select *Time* in the item list in the upper right corner of the policy listing.
.Add Time Policy
image:images/policy/create-time.png[alt="Add Time Policy"]
== Configuration
* *Name*
+
A human-readable and unique string describing the policy. A best practice is to use names that are closely related to your business and security requirements, so you
can identify them more easily.
+
* *Description*
+
A string containing details about this policy.
+
* *Start time*
+
Defines the time before which access must *not* be granted. Permission is granted only if the current date/time is later than or equal to this value.
* *Expire time*
+
Defines the time after which access must *not* be granted. Permission is granted only if the current date/time is earlier than or equal to this value. Select *Repeat* to repeat access being granted on a specific *Day of Month*, *Month*, *Year*, *Hour* or *Minute*.
* *Day of Month*
+
Defines the day of month that access must be granted. You can also specify a range of dates. In this case, permission is granted only if the current day of the month is between or equal to the two values specified.
* *Month*
+
Defines the month that access must be granted. You can also specify a range of months. In this case, permission is granted only if the current month is between or equal to the two values specified.
* *Year*
+
Defines the year that access must be granted. You can also specify a range of years. In this case, permission is granted only if the current year is between or equal to the two values specified.
* *Hour*
+
Defines the hour that access must be granted. You can also specify a range of hours. In this case, permission is granted only if current hour is between or equal to the two values specified.
* *Minute*
+
Defines the minute that access must be granted. You can also specify a range of minutes. In this case, permission is granted only if the current minute is between or equal to the two values specified.
* *Logic*
+
The logic of this policy to apply after the other conditions have been evaluated.
Access is only granted if all conditions are satisfied. {project_name} will perform an _AND_ based on the outcome of each condition.
[role="_additional-resources"]
.Additional resources
* <<_policy_logic, Positive and negative logic>>
Reference in a new issue View git blame Copy permalink