7 docs tagged with "access-gateway"

Access Gateway integrates with Keycloak for token validation and exchange, and with the Keymate Authorization Decision Provider for fine-grained permission evaluation.

The Access Gateway processes every permission check request through a structured enforcement pipeline that produces a GRANT or DENY decision.

API reference for the organization context endpoint — retrieves the authenticated user's organization assignment with subject-based caching and negative caching support.

Access Gateway is the centralized PDP Proxy and Edge Orchestrator that validates tokens, evaluates access rules, and enforces authorization decisions for every permission check request.

When enforcers send requests without explicit resources, the Access Gateway resolves the target resources from the request URI and HTTP method.

The Access Gateway evaluates incoming requests against declarative access rules to determine token exchange and resource resolution behavior.

Access Gateway caches permission decisions, exchanged tokens, and organization context to reduce latency and protect downstream authorities.