How-tos

Creating Sample Policy in Cloudentity Platform

Learn how to create sample authorization policies, which you can assign to different execution points to protect access at any level: organization, service (feature), and resource.

Create Policy

  1. In your workspace, navigate to Governance > Policies and select CREATE POLICY.

  2. In the Create Policy popup window

    1. Select Policy type from the dropdown menu.

      Policy types

      There are a few policy types available in Cloudentity: API request, User, Machine to machine, Developer, Dynamic Client Registration.

    2. Specify Policy name and Display name.

    3. Select Cloudentity as Policy language.

      Policy language

      Another type of policies that you can create in Cloudentity is OPA. For instruction on how to create OPA policies, see Protecting applications and APIs in Cloudentity using OPA.

    4. Select Create.

Result

The Cloudentity policy builder opens.

Add Validator

  1. In the policy builder, select the + sign to add a validator.

  2. In the Add new validator fly-out view, enter a validator name of your preference into the search field and follow up to the validator setup.

  3. In the validator view, set up the validator by adding and configuring its fields:

    1. Select the source data context and specify the source value.
    2. Select the operator to define the relationship between the source and the target.
    3. Select the target data context and specify target value.
    4. Select Save to proceed.

  4. When all the fields for the validators are ready

    1. Select the OK icon to finalize your validator.

    2. Select Save to finalize your new policy.

    Result

    Your newly-created policy is available in the Policies view.