I have requirement to write a policy for the particular user it will return the xacml response like this :
This policy is based on single user : bob
FirstName: Create= true , Read = true, Update = true, Delete = false
MiddleName: Create= true , Read = true, Update = true, Delete = false
LastName: Create= true , Read = true, Update = true, Delete = false
How to write a xacml policy for such requirement and how the request will look like for the same policy.
How to achieve this policy using Axiomatics Alfa plugin and WSO2 identity server.
Let get as following... This policy is based on single user : bob
Following is the policy, policy is based on user ("bob"). Therefore we can take the user name as the policy target and can create three rules. In rules, "FirstName", "MiddleName" and "LastName" have been taken as resources and for each resource, rule has been created.
Following is the XACML multiple decision profile request that you can try out. Here, you can change the resource value and see the authorization for each resource. It would return permit result for the actions that are permit for "bob"