This tutorial describes the administration of level 3 advanced authorization rules into Authzforce, either directly, or with the help of the Keyrock GUI. The simple verb-resource based permissions are amended to use XACML and new XACML permissions added to the existing roles. The updated ruleset is automatically uploaded to Authzforce PDP, so that policy execution points such as the PEP proxy are able to apply the latest ruleset.
The tutorial demonstrates examples of interactions using the Keyrock GUI, as well cUrl commands used to access the REST APIs of Keyrock and Authzforce - Postman documentation is also available.
NGSI-v2 offers JSON based interoperability used in individual Smart Systems. To run this tutorial with NGSI-v2, use the NGSI-v2 branch.
git clone https://github.com/FIWARE/tutorials.Administrating-XACML.git
cd tutorials.Administrating-XACML
git checkout NGSI-v2
./services create
./services start |
📚 Documentation |  Postman Collection |
 |
|---|
MIT © 2019-2024 FIWARE Foundation e.V.