<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">There is authorization prototype by
Pedro in progress. You can check it here
<a class="moz-txt-link-freetext" href="https://github.com/pedroigor/keycloak-authz">https://github.com/pedroigor/keycloak-authz</a> <br>
<br>
Marek<br>
<br>
On 09/04/16 14:45, Duarte wrote:<br>
</div>
<blockquote
cite="mid:CALvqGZDStXX=UH5Q4Lkhwp8E9d+=QRtLjQEpw2G+SrpFWegPgA@mail.gmail.com"
type="cite">
<div dir="ltr">Hi,
<div><br>
</div>
<div>My name is Duarte, and this is the first post on this
dev-list.</div>
<div><br>
</div>
<div>My question is regarding Attribute-based Access Control. Is
there any usable feature for Attribute based decision for
resource access? Or do I have to make my own? </div>
<div><br>
</div>
<div>Basically what I want to do is a PEP (Policy Enforcement
Point) and a PDP (Policy Decision Point) on Keycloak with
external attributes (Federated).</div>
<div><br>
</div>
<div>e.g: User has attribute of X can only access files
A<->B and User with attribute Y can only access
B<->L.</div>
<div><br>
</div>
<div>Thank you.</div>
<div>
<div><br>
</div>
-- <br>
<div class="gmail_signature">
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div><br>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
keycloak-dev mailing list
<a class="moz-txt-link-abbreviated" href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a>
<a class="moz-txt-link-freetext" href="https://lists.jboss.org/mailman/listinfo/keycloak-dev">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a></pre>
</blockquote>
<br>
</body>
</html>