Skip to content

Releases: intuit/identity-authz-apl

Version 0.28

23 Apr 06:46
745f2eb
Compare
Choose a tag to compare

What's Changed

Full Changelog: 0.27...0.28

Version 0.27

03 Aug 10:33
75dcca1
Compare
Choose a tag to compare

What's Changed

Full Changelog: 0.26...0.27

Support for Dynamic verification of request

21 Jun 09:08
9534774
Compare
Choose a tag to compare

This release supports the dynamic verification of requests. Any attribute of the form,
verify_<attribute_name> will be validated against <attribute_name>

For example, if the request is as mentioned below:
{
"subject": {
"id": "123",
"department": "HR",
"verify_department": "HR"
},
"action": {
"id": "read"
}
}

Then in the above request, the value of "verify_department" will be validated against "department".

Support for enhanced policy response including advice, cause & remediation

18 May 09:04
3be62ef
Compare
Choose a tag to compare

The response returned from the policy can now have enhanced attributes segregated into separate categories named as below:

  1. Obligations [Array of Map]
    This section denotes operation(s) specified in a response that should be performed by the PEP or the enforcement service in conjunction with the enforcement of an authorization decision. For example, auditing of decisions for compliance reasons.
    Obligations are usually recommended only when the authorization result is "Permit".
  2. Cause [Array of Map]
    When a denial or equivalent decision is returned, consumers need visibility of why that decision is returned. This section in response will enhance the troubleshooting and consumers might not always need to dig deeper into logs to gain these insights.
  3. Advice [Array of Map]
    Advice is used in its literal meaning in the response i.e. either information or suggestion. This section of the response will be the container for additional information that needs to be sent back for the response context. Along with that, if there are any suggestions are also sent back.
  4. Remediation [Array of Map]
    Remediation will be used to render a predefined experience in some predefined use cases where either business demands enforcement of certain security measures.

First public release

11 Aug 06:03
fdd1fbd
Compare
Choose a tag to compare

Fixed potential security vulnerabilities in dependencies alerted by depandabot.
Cleaned up and fixed the sample helloworld to work with latest apl.

This is available at,
https://repo.maven.apache.org/maven2/com/intuit/apl/apl-core/0.23/

Please read README for more information and instructions for use,

  <dependency>
      <groupId>com.intuit.apl</groupId>
      <artifactId>apl-core</artifactId>
      <version>0.23</version>
    </dependency>

Updating the 1st release

09 Aug 18:17
693eea3
Compare
Choose a tag to compare
Pre-release

Testing the 1st release to central

Creating the 1st Release of the APL

09 Aug 18:06
91b0f2d
Compare
Choose a tag to compare
Pre-release

This is the first release of APL to which can be consumed from central OSS repository.