Domains / Security and Compliance/ API Contract

Authorization API

Logical API contract for evaluating authorization policies, managing role assignments, and querying effective permissions for a given identity.

API Contract Application active

Defines the logical contract for authorization operations. Covers permission evaluation (is user X allowed to do Y on resource Z?), role assignment management, and effective permission queries. Implemented via OPA policy evaluation in the Policy Engine subsystem.

Relationships

Realizes outgoing 1
Target Element Element Type
Identity and Access Management Component
Served by incoming 1
Source Element Element Type
Identity and Access Management Component

Architecture Context

Diagrams

Not yet referenced in any diagram

Properties

Type API Contract
Layer Application
Domain Security and Compliance
Status active
Owner Security Team

Additional Metadata

Archimate Type application-service
Ddd Type Domain Service
Togaf Type Information System Service
Emm Type Conceptual IS Service

Meta Model

Business
Organization
Application current
Technology

Actions