Stack Overflow
Stack Overflow

Questions tagged [pdp]

XACML's Policy Decision Point

XACML is the eXtensible Access Control Markup Language as defined by OASIS.

XACML defines three parts:

  • an architecture
  • a request/response scheme, and
  • an architecture. The PDP is part of the architecture

In XACML the Policy Decision Point (PDP) is the core engine used to evaluate incoming authorization requests against known policies in order to decide whether a request will result in a Deny or Permit, e.g.:

Is Physician John allowed to access the Medical Record of Patient James at 3 pm?

The PDP will produce a decision e.g.

Permit + obligation "log the decision"

See XACML's tag () for more details.

60 questions
1
vote
2 answers

Sending XACML request with multiple values in bag to be evaluated by policy

Below is an XACML policy, for Chinese Walls, which uses stringAtLeastOneMemberOf to compare two attributes two see if they contain the same value of a list of values. I.e. if the subject requesting access to an object has a label [1, 4, 5] and the…
rshah
  • 675
  • 2
  • 12
  • 32
1
vote
2 answers

Simulating multiple Policy Decision Points (PDPs) in distributed environment

Let's take a scenario where subjects will be requesting access to many objects per second. A heavy load on a single PDP would mean increase in wait and read/write times per request. So far I have used the AuthzForce Core project to setup a single…
rshah
  • 675
  • 2
  • 12
  • 32
1
vote
1 answer

Compare two multi-element attributes in XACML policy

Consider a subject and object both having a label defined as follows: subject/object label = [i1, i2, ..., in], where i is some subjectId of another subject. In a policy (ALFA/XACML), how can I perform a comparison against the subject and object…
rshah
  • 675
  • 2
  • 12
  • 32
1
vote
1 answer

Access request policy not being invoked in AuthZForce PDP

Ive created this policy in the Domain of the AuthZForce PDP:
Paul Pogonoski
  • 35
  • 3
1
vote
1 answer

External XACML Policy Decision Point (PDP) for WSO2 API gateway

I am trying to configure WSO2 API gateway, Can I use external PDP(policy decision Point) like Axiomatics Policy server to implement authorization? Also want to know how this can be configured, any docs or pointer will be helpful.
Kobi
  • 11
  • 2
1
vote
1 answer

Fiware AuthZForce error: "AZF domain not created for application"

I'm trying to protect Orion Context Broker using KeyRock idm, Wilma PEP-Proxy and AuthZForce PDP over Docker. For now, level 1 security works well and I can deny access to non logged users, but I get this error on Wilma when trying to add level…
Lorenzo García
  • 13
  • 3
1
vote
1 answer

Support for Time Math and Time Zone in XACML 3.0

I'd like to get some insights about the PDP process decisions for XACML Version 3 regarding the processing of time window based decisions, especially how does it work with the time-zone field support that is part of the specification. For…
Claude Falbriard
  • 925
  • 8
  • 27
1
vote
1 answer

I am getting error while using MAP in racket

I am very new to racket and started using lists examples recently, but when i run following map example: (map sqrt (list 1 2 3 4)) I get this error: map: this function is not defined
ashish
  • 11
  • 1
1
vote
1 answer

What is a standard way to call WSO2 ESB as PEP for XACML Authorization wtih IDP from webapplication?

I am trying to work on Authorization with XACML. I have successfully communicate with WSO2 Identity server (PDP) from normal Axis2 Interceptor. Now I am trying to use Wso2 ESB as PEP (mentioned in below…
Budhh
  • 153
  • 8
0
votes
0 answers

pdp partial dependence plots rpartscore partial funtion with probability function

I am trying to compute partial dependence plots for model validation of my rpartscore model. when I use my partial(big.tree, pred.var = "VBT",prob=T, plot = T, type = "regression", smooth=TRUE) I get a graph predicting the values but I actually…
Sofia
  • 75
  • 1
  • 7
0
votes
0 answers

covert sklearn.utils._bunch.Bunch to pd.DataFrame

need to convert sklearn.utils._bunch.Bunch p=partial_dependence(model, X, features=features, percentiles=(0, 1), grid_resolution=2, kind='average') #sklearn.utils._bunch.Bunch' to pd.DataFrame, surfing the internet led me to the…
Антон Конов
  • 11
0
votes
0 answers

ValueError: Each entry in features must be either an int, a string, or an iterable of size at most 2

When using a variable containing features, an error is generated, when inserting features directly, there are no problems a=['MedInc', 'HouseAge', 'AveRooms', 'AveBedrms', 'Population', 'AveOccup', 'Latitude', 'Longitude'] def modell(data, metka,…
Антон Конов
  • 11
0
votes
0 answers

Can't find any PIP implementations to power ABAC. Do any exist?

There seems to be a decent amount of work going on with ABAC, and there are many libraries that implement what seems to be basically the PDP portion of it: CASL https://casl.js.org/v5/en/guide/intro#basics Casbin…
rwusana
  • 149
  • 4
0
votes
0 answers

Different Partial Dependence Plot (PDP) depending on using either pdp-package or DALEX-package

I can't figure out why I'm having two different PDPs depending on whether I'm using pdp-package or DALEX-package. I initially wanted to make PDPs using tidymodels in combination with pdp and DALEX, but neither combination seemed to work easily. Then…
PeRiKo
  • 1
  • 2
0
votes
2 answers

How to add external image in magento2 pdp

How can we add an external image for magento2 product detail page(not from the magento2 backend). I tried some stuff in the galley.phtml but not succeed. Is there anybody who can fix this, help me please.
Ajith
  • 55
  • 5
1
2
3 4