Authorize by Role rule

To authorize a request based on a role associated with the client

Authorizes a request based on the role associated with the client. Authentication rules validate the caller's identity and this rule authorizes access based on their role. If the caller's role isn't defined in this rule, the Snaplex rejects the request with a 403 Forbidden error.

Rule execution order

This rule executes after authentication.


Field	Description
When this rule should be applied	An expression that defines one or more conditions that must be true for the rule to execute. Default value: True Example: The expression `request.method == "DELETE"` causes the rule to execute only on `DELETE` requests.
Roles	One or more roles and the condition in which they apply. Both the role and the condition can be an expression.
Description	Default value: `Authorizing requests only for specified roles`