The Identity Manager ascertains who requested access to data or applications and, after identifying the user, subsequently makes user information with the corresponding roles available. AuthZForce works hand in hand with the Identity Manager. The tool controls what users are allowed to do (authorization).
Access rules for web resources and individual HTTP methods are stored in the policies. It is thus possible to restrict access to websites or web resources and access to API data, for instance. Using HTTP methods (e.g. POST, GET, PUT, etc.), it is moreover possible to define in a great deal of detail which operations may be performed. In combination with identified users and roles, this allows for the realisation of authorization concepts with the most varied levels of detail.