Access control as code.
Policy Engine lets you express access rules in a high-level policy language and evaluate them at runtime — across Hub, TrustGate, and your own services.
Key features
Declarative policies
Write access rules in a structured policy language. Version-controlled, reviewable, auditable.
Real-time evaluation
Sub-millisecond policy decisions via a high-performance evaluation engine.
Attribute-based access control
Evaluate policies against any attribute — user role, credential claim, org membership, time of day.
Audit log
Every policy decision is logged with full context — who asked, what was decided, and why.
Use cases
RBAC at scale
Replace brittle code-level role checks with governed, auditable policy rules.
ABAC for regulated data
Enforce data-residency, sensitivity, and purpose-limitation rules in a single policy layer.