Introduction
Policy Administration Point (PAP)
Provides a user interface for managing the life-cycle of policies. That typically includes policy authoring, managing, testing, analyzing, and version control.
Policy Decision Point (PDP)
The policy decision point is responsible to calculate the required access decision, based on the collection of attributes that are sent in the authorization request, pulled from external repositories and environmental attributes. The decision is calculated based on the policies that are associated with the requesting party.
The PlainID PDP, is designed to support different access patterns that provide both flexibility for the application and consistency with the defined policies.
The PDP is built for large scales and high performance and can be deployed in a distributed architecture.
Policy Enforcement Point (PEP)
The PEP enforces policy decisions in response to an access request. The PEP can be implemented within the application or as an external component that stands before the application or data.
Please see the detailed deployment patterns for enforcement options.
Policy Information Point (PIP)
The policy information points are the sources of attributes used by the policy decision, to address the authorization requests based on the defined policies.
The policy information points in PlainID, are mapped by a virtualization layer, that enables usage of multiple sources at the same time, including virtual and API based sources.