Details
Description
JWT_Claim_Check policy blocks methods on allow list and allows all other methods.
Example policy config displaying this behaviour:
{ "combine_op": "or", "methods": [ "POST", "GET" ], "resource_type": "liquid", "operations": [ { "op": "==", "jwt_claim_type": "liquid", "jwt_claim": "{% if jwt.realm_access.roles contains \"test1\" %}true{% else %}false{% endif %} ", "value_type": "plain", "value": "true" } ], "resource": "/" }