Administer authorization rules

Administer authorization rules

Authorization rules are conditions or standards contained in an authorization policy that are used to make access decisions that are based on attributes such as user, application, and environment context. Authorization rules are defined to specify conditions that must be met before access to a protected object is permitted. A rule is created by using Boolean conditions that are based on data that is supplied to the authorization engine within the user credential, from the resource manager application or from the encompassing business environment.
A Security Verify Access authorization rule is a policy type like an access control list (ACL) or a protected object policy (POP). The rule is stored as a text rule within a rule policy object and is attached to a protected object in the same way and with the same constraints as ACLs and POPs.
The Security Verify Access administration Java™ classes provide methods to create, delete, modify, list, and get authorization rules.
For more information about authorization rules, see the IBM Security Verify Access for Web: Administration Guide.
Use the methods shown in Table 1 to administer authorization rule objects.

Method Description

PDAuthzRule.createAuthzRule Create the specified authorization rule object.

PDAuthzRule.deleteAuthzRule Delete the specified authorization rule object.

PDAuthzRule constructor
Instantiate the specified authorization rule object.

PDAuthzRule object.getId Returns the ID for the specified authorization rule.

PDAuthzRule object.getDescription Returns the description for the specified authorization rule.

PDAuthzRule object.getFailReason Returns the fail reason, if any, for the specified authorization rule.

PDAuthzRule object.getRuleText Returns the rule text for the specified authorization rule.

PDAuthzRule.listAuthzRules List all the registered authorization rules.

PDAuthzRule.setDescription
PDAuthzRule object.setDescription Sets the description for the specified authorization rule.

PDAuthzRule.setRuleText
PDAuthzRule object.setRuleText Sets the authorization rule text.

PDAuthzRule.setFailReason
PDAuthzRule object.setFailReason Sets the authorization rule fail reason.

For detailed reference information about these methods, see the Javadoc HTML documentation.
Parent topic: Administration Java Developer Reference

Method	Description
PDAuthzRule.createAuthzRule	Create the specified authorization rule object.
PDAuthzRule.deleteAuthzRule	Delete the specified authorization rule object.
PDAuthzRule constructor	Instantiate the specified authorization rule object.
PDAuthzRule object.getId	Returns the ID for the specified authorization rule.
PDAuthzRule object.getDescription	Returns the description for the specified authorization rule.
PDAuthzRule object.getFailReason	Returns the fail reason, if any, for the specified authorization rule.
PDAuthzRule object.getRuleText	Returns the rule text for the specified authorization rule.
PDAuthzRule.listAuthzRules	List all the registered authorization rules.
PDAuthzRule.setDescription PDAuthzRule object.setDescription	Sets the description for the specified authorization rule.
PDAuthzRule.setRuleText PDAuthzRule object.setRuleText	Sets the authorization rule text.
PDAuthzRule.setFailReason PDAuthzRule object.setFailReason	Sets the authorization rule fail reason.