keycloak.authorization.permission

Keycloak authorization Permission module.

Module Contents

Classes

Permission

Base permission class.
class keycloak.authorization.permission.Permission(name, type, logic, decision_strategy)[source]

Base permission class.

Consider this simple and very common permission:

A permission associates the object being protected with the policies that must be evaluated to determine whether access is granted.

X CAN DO Y ON RESOURCE Z

where

  • X represents one or more users, roles, or groups, or a combination of them. You can

    also use claims and context here.

  • Y represents an action to be performed, for example, write, view, and so on.

  • Z represents a protected resource, for example, “/accounts”.

https://keycloak.gitbooks.io/documentation/authorization_services/topics/permission/overview.html

Parameters:

  • name (str) – Name

  • type (str) – Type

  • logic (str) – Logic

  • decision_strategy (str) – Decision strategy

property name[source]

Get name.

Returns:

name

Return type:

str

property type[source]

Get type.

Returns:

type

Return type:

str

property logic[source]

Get logic.

Returns:

Logic

Return type:

str

property decision_strategy[source]

Get decision strategy.

Returns:

Decision strategy

Return type:

str

property resources[source]

Get resources.

Returns:

Resources

Return type:

list

property scopes[source]

Get scopes.

Returns:

Scopes

Return type:

list

__repr__()[source]

Repr method.

Returns:

Class representation

Return type:

str

__str__()[source]

Str method.

Returns:

Class string representation

Return type:

str