keycloak.authorization.permission

Keycloak authorization Permission module.

Classes

Permission

Base permission class.

Module Contents

class keycloak.authorization.permission.Permission(name, type, logic, decision_strategy)[source]

Base permission class.

Consider this simple and very common permission:

A permission associates the object being protected with the policies that must be evaluated to determine whether access is granted.

X CAN DO Y ON RESOURCE Z

where

  • X represents one or more users, roles, or groups, or a combination of them. You can

    also use claims and context here.

  • Y represents an action to be performed, for example, write, view, and so on.

  • Z represents a protected resource, for example, “/accounts”.

https://keycloak.gitbooks.io/documentation/authorization_services/topics/permission/overview.html

Parameters:

  • name (str) – Name

  • type (str) – Type

  • logic (str) – Logic

  • decision_strategy (str) – Decision strategy

property name[source]
Get name.
Returns:

name

Return type:

str

property type[source]
Get type.
Returns:

type

Return type:

str

property logic[source]
Get logic.
Returns:

Logic

Return type:

str

property decision_strategy[source]
Get decision strategy.
Returns:

Decision strategy

Return type:

str

property resources[source]
Get resources.
Returns:

Resources

Return type:

list

property scopes[source]
Get scopes.
Returns:

Scopes

Return type:

list

__repr__()[source]

Repr method.

Returns:

Class representation

Return type:

str

__str__()[source]

Str method.

Returns:

Class string representation

Return type:

str