Authorization Statements
Statements instruct the policy decision service to perform additional processing in conjunction with an authorization decision. In addition to allowing or blocking access to a resource, using statements, the decision service can attach information to decision responses and filter and transform API payloads.
|
For detailed information about statements resources, refer to Statements in the PingOne Cloud Platform Administrator Guide. |
Authorization statements data model
| Property | Type? | Required? | Mutable? | Description |
|---|---|---|---|---|
|
String |
Required |
Mutable |
Specifies when to attach to a final decision. Options are |
|
String |
Required |
Mutable |
Specifies what result the statement applies to. Options are |
|
Object |
Required |
Mutable |
The attributes attached to the statement. |
|
String |
Required |
Mutable |
The statement code. |
|
String |
Optional |
Mutable |
The authorization processor resource’s description. |
|
String |
N/A |
Read only |
The resource’s unique identifier. |
|
String |
Required |
Mutable |
A user-friendly authorization processor name. The |
|
Boolean |
Optional |
Mutable |
Specifies that the statement must be fulfilled as a condition of authorizing the decision request. The defaule is |
|
String |
Required |
Mutable |
The statement payload. |
|
Object |
Required |
Mutable |
The services attached to the statement. |
|
String |
Required |
Read only |
A random ID generated by the system for concurrency control purposes. |
Event types
The audit reporting events applicable to the authorize statements service are:
| Topic | Event |
|---|---|
|
|
|
|
|
|
Response codes
| Code | Message |
|---|---|
200 |
Successful operation. |
201 |
Successfully created. |
204 |
Successfully removed. No content. |
400 |
The request could not be completed. |
401 |
You do not have access to this resource. |
403 |
You do not have permissions or are not licensed to make this request. |
404 |
The requested resource was not found. |