Sindhu Arju
Reputation: 438
Attribute Based Policy in keycloak
How to create a user attribute based policy?
var context = $evaluation.getContext();
var identity = context.getIdentity();
var attributes = identity.getAttributes();
if (identity.location=='mumbai') {
$evaluation.grant();
}
A User has an attribute location and value as mumbai.
Upvotes: 2
Views: 656
Answers (1)
ravthiru
Reputation: 9633
You could to some thing like this, as attributes are list, you can check first element
var context = $evaluation.getContext();
var identity = context.getIdentity();
var attributes = identity.getAttributes();
if (attributes.location !== null && attributes.location[0] == "mumbai") {
$evaluation.grant();
}
Upvotes: 1
Related Questions
- How Can we use Policy-enforcer dynamically in Java Springboot?
- Adding custom user attribute in keycloak using spring boot app
- Keycloak and Spring Boot: session creation policy
- Spring Keycloak adapter Permissions Policy Enforcer. How to set it up
- Keycloak fine grained permissions with Spring Boot / Spring Security
- Keycloak Policy Enforcing
- Keycloak configuration in application.properties for spring boot
- ABAC with keycloak - Using Resource attributes in policy
- Expressing security constraints in Java rather than in properties
- Keycloak ABAC based policy enforcer without adding the attribute in token