Creating SecureAuth policies in the Visual Policy Editor

This page walks through the steps for creating an authorization policy in the visual policy editor. For a reference of every validator you can use, see Policy validators. For testing the policy before you attach it, see Policy testing and simulation.

Before you start

• Decide the policy type you need. The type determines where the policy can be attached and which validators are available.
• Know which attachment point the policy will serve (workspace, application, scope, or API request level).

Create the policy

Policies are created per workspace. SecureAuth prefixes the policy ID with the workspace name automatically.

1. In your workspace, go to Authorization > Policies > + CREATE POLICY.

2. Fill in the policy form. Select the correct policy type for where you plan to attach the policy.

3. Select Create.

   The policy editor opens.

4. Define the policy by adding validators. Only validators relevant to the selected policy type are available.

   For the full list of validators and what each one does, see Policy validators.

5. Save the policy.

Test the policy

Use the editor's Test mode to run the policy against a sample input before you assign it. See Policy testing and simulation for the testing workflow.

Assign the policy

Once the policy passes your tests, attach it to the appropriate execution point:

• Assign a policy to a scope
• Attach policies at workspace, application, or API level

See also

• Policy validators
• Authoring policies (Rego / visual editor)
• Policy testing and simulation
• Policy scope and attachment
• API documentation for policies