When can an employee access customer records?

In this second example we are going to send a POST request to the REST API to ask when can an employee access a customer record.

As a user you can send the request in JSON format for the evaluation.

Request

To generate an AST response or a JSON response, send the following request to the /authorization/constraints endpoint.

To generate a Human-readable TEXT response, send this request to the /authorization/simplified-constraints endpoint.

{
  "providedAttributes": [
    {
      "attribute": "abcbank.documentType",
      "values": [
        "customer_record"
      ]
    },
      {
      "attribute": "abcbank.role",
      "values": [
        "employee"
      ]
    }
  ],
    
  "pdpDecisionSet": [
     "PERMIT"
  ],
   "excludeIndeterminate": false
}

Responses

You can get 3 distinct response types for the aforementioned request.

AST response

AST response

{
    "response": {
        "constant": {
            "value": "false",
            "type": "boolean"
        }
    }
}

Human-readable JSON response

Human-readable JSON response

{
    "response": "Never evaluates to PERMIT"
}

Human-readable TEXT response

Human-readable TEXT response

Never evaluates to PERMIT