Skip to content

Support for enhanced policy response including advice, cause & remediation
Compare
Choose a tag to compare
@ravichauhan03 ravichauhan03 released this 18 May 09:04
· 28 commits to main since this release
0.24
3be62ef
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

The response returned from the policy can now have enhanced attributes segregated into separate categories named as below:

  1. Obligations [Array of Map]
    This section denotes operation(s) specified in a response that should be performed by the PEP or the enforcement service in conjunction with the enforcement of an authorization decision. For example, auditing of decisions for compliance reasons.
    Obligations are usually recommended only when the authorization result is "Permit".
  2. Cause [Array of Map]
    When a denial or equivalent decision is returned, consumers need visibility of why that decision is returned. This section in response will enhance the troubleshooting and consumers might not always need to dig deeper into logs to gain these insights.
  3. Advice [Array of Map]
    Advice is used in its literal meaning in the response i.e. either information or suggestion. This section of the response will be the container for additional information that needs to be sent back for the response context. Along with that, if there are any suggestions are also sent back.
  4. Remediation [Array of Map]
    Remediation will be used to render a predefined experience in some predefined use cases where either business demands enforcement of certain security measures.
Assets 2
Loading