Authorization engine context information

Authorization engine context information

If required, the authorization engine automatically provides context information before the authorization rule is evaluated. The ADI provided by the authorization engine includes the name of the protected object that is the target of the access decision. The ADI also includes the string of operations the requesting user wants to do on the protected object. The following attribute names are reserved for these data items:

azn_engine_target_resource
azn_engine_requested_actions

Parent topic: Sources for retrieving ADI