Skip to main content
Version: 1.1

When can an employee access customer records?

In this second example we are going to send a POST request to the REST API to ask when can an employee access a customer record.

As a user you can send the request in JSON format for the evaluation.

Request

To generate an AST response or a JSON response, send the following request to the /authorization/constraints endpoint.

To generate a Human-readable TEXT response, send this request to the /authorization/simplified-constraints endpoint.

{
"providedAttributes": [
{
"attribute": "abcbank.documentType",
"values": [
"customer_record"
]
},
{
"attribute": "abcbank.role",
"values": [
"employee"
]
}
],

"pdpDecisionSet": [
"PERMIT"
],
"excludeIndeterminate": false
}

Responses

You can get 3 distinct response types for the aforementioned request.

AST response

{
"response": {
"constant": {
"value": "false",
"type": "boolean"
}
}
}