Overview of Policy Authoring
Entitlement system policies output a decision that informs the caller whether or not the input meets the criteria of the entitlement policy and what Entitlements if any should be granted to the user. By default, Entitlement systems deny all requests (for example, they return
allowed equal to
false), and you must author policy to allow requests, based on the fields in the input and data pulled into DAS by data sources.
Styra DAS includes pre-built rule snippets that make decisions using the opinionated object model in combination with the input provided by the caller. These snippets can be configured to enforce their outcome or monitor their outcome. Snippets in monitor mode do not affect the final decision of whether a request should be allowed or not; however, they do record their outcome for record keeping.