Resource access
In order to view and edit information from PolicyCenter, a caller needs to be able to access one or more
endpoints. This type of access is known as endpoint access. For example, if a
caller has access to the GET /policies endpoint, that caller can view
policies.
However, having access to a given endpoint does not mean a caller can view every
resource that endpoint could return. In some cases, callers can access only certain instances
of the relevant resource. For example, the GET /policies endpoint could be
available to a policyholder, an underwriter, and a claims adjuster. But each of these users
have access to a different set of policies:
- The policyholder can see only the policies they hold.
- The underwriter can see only the policies assigned to them.
- The claims adjuster can see only the policies associated with claims assigned to them.
This type of access is known as resource access. Resource access determines which instances of a given resource are available to a given caller. Resource access is defined by a set of resource access strategies. This topic describes how resource access strategies are assigned to a caller, how they are executed for each call, and how to interpret the base configuration files so that you can understand how resource access is executed.