keycloak.authorization.permission

Keycloak authorization Permission module.

Module Contents

Classes

Permission

Base permission class.
class keycloak.authorization.permission.Permission(name, type, logic, decision_strategy)[source]

Base permission class.

Consider this simple and very common permission:

A permission associates the object being protected with the policies that must be evaluated to determine whether access is granted.

X CAN DO Y ON RESOURCE Z

where

  • X represents one or more users, roles, or groups, or a combination of them. You can

    also use claims and context here.

  • Y represents an action to be performed, for example, write, view, and so on.

  • Z represents a protected resource, for example, “/accounts”.

https://keycloak.gitbooks.io/documentation/authorization_services/topics/permission/overview.html

Parameters

  • name (str) – Name

  • type (str) – Type

  • logic (str) – Logic

  • decision_strategy (str) – Decision strategy

property name[source]

Get name.

Returns

name

Return type

str

property type[source]

Get type.

Returns

type

Return type

str

property logic[source]

Get logic.

Returns

Logic

Return type

str

property decision_strategy[source]

Get decision strategy.

Returns

Decision strategy

Return type

str

property resources[source]

Get resources.

Returns

Resources

Return type

list

property scopes[source]

Get scopes.

Returns

Scopes

Return type

list

__repr__()[source]

Repr method.

Returns

Class representation

Return type

str

__str__()[source]

Str method.

Returns

Class string representation

Return type

str