📄️ Authorization Service
The Authorization service makes access decisions based on Attribute-Based Access Control (ABAC) policies and evaluates subject mappings to assign attributes to specific entities. The service provides two endpoints: GetEntitlements and GetDecisions.
🗃️ Policy
5 items
🗃️ CLI - otdfctl
8 items
📄️ Entity Resolution Service
The entity resolution service is an IdP-specific service that interacts with the Identity Provider (IdP) to retrieve information about entities required by the Authorization service. The service provides two endpoints: CreateEntityChainFromJwt and ResolveEntities.
📄️ Key Access Service
The Key Access Server (KAS) manages the lifecycle of cryptographic keys and provides access to these keys for the encryption and decryption of TDFs. KAS serves as an out-of-the-box Policy Enforcement Point (PEP) for the OpenTDF platform.