Version: 1.1

CAQ functionality has transitioned to Access Decision Service (ADS) and future updates will be delivered through ADS releases. Read the ADS documentation for details.

When can an employee access customer records?

In this second example we are going to send a POST request to the REST API to ask when can an employee access a customer record.

As a user you can send the request in JSON format for the evaluation.

Request

To generate an AST response or a JSON response, send the following request to the /authorization/constraints endpoint.

To generate a Human-readable TEXT response, send this request to the /authorization/simplified-constraints endpoint.

{
  "providedAttributes": [
    {
      "attribute": "abcbank.documentType",
      "values": [
        "customer_record"
      ]
    },
      {
      "attribute": "abcbank.role",
      "values": [
        "employee"
      ]
    }
  ],
    
  "pdpDecisionSet": [
     "PERMIT"
  ],
   "excludeIndeterminate": false
}

Responses

You can get 3 distinct response types for the aforementioned request.

AST response
Human-readable JSON response
Human-readable TEXT response

AST response

{
    "response": {
        "constant": {
            "value": "false",
            "type": "boolean"
        }
    }
}

Human-readable JSON response

{
    "response": "Never evaluates to PERMIT"
}

Human-readable TEXT response

Never evaluates to PERMIT

On this page

When can an employee access customer records?

Request

Responses

AST response

Human-readable JSON response

Human-readable TEXT response

On this page

On this page

When can an employee access customer records?

Request​

Responses​

AST response​

Human-readable JSON response​

Human-readable TEXT response​

On this page

Request

Responses

AST response

Human-readable JSON response

Human-readable TEXT response