Resource access
In order to view and edit information from BillingCenter, a caller needs to be able to access one or more
endpoints. This type of access is known as endpoint access. For example, if a
caller has access to the GET /policies
endpoint, that caller can view
policies.
However, having access to a given endpoint does not mean a caller can view every
resource that endpoint could return. In some cases, callers can access only certain instances
of the relevant resource. For example, the GET /policies
endpoint could be
available to a policyholder, a billing clerk, and a producer. But each of these users have
access to a different set of claims:
- The policyholder can see only the policies they hold.
- The billing clerk can see all policies.
- The producer can see only the policies they service.
This type of access is known as resource access. Resource access determines which instances of a given resource are available to a given caller. Resource access is defined by a set of resource access strategies. This topic describes how resource access strategies are assigned to a caller, how they are executed for each call, and how to interpret the base configuration files so that you can understand how resource access is executed.