Policies

A Policy is a set of rules which allows or denies certain actions to certain resources, based on certain conditions. A policy always consists of the following elements:

Effect - whether the policy denies or allows the action
Action - which action is this policy for. For example read, create, update, delete, etc.
Resources - the Plate functionality names that the policy is about. E.g. attachments, or content types. These functionality names are notated in PlateID format. Go to the Resources page to learn more.
Conditions - the conditions under which the policy takes effect. For example, the policy only takes effect if the site_id of the resource in question is equal to 1234. Go to the Conditions page to learn more.

Policies are notated as JSON. Check out an example:

{
  "version": 1,
  "statement": {
    "effect": "allow",
    "action": "create",
    "resources": "plateid://Base/Attachment",
    "conditions": {
      "number": {
        "==": {"object.site_id": 1234}
      }
      "string": {
        "==": {"subject.email": "test@email.com"}
      }
    }
  }
}