Product SiteDocumentation Site

12.4.2. Group-Based Authorization

This method allows you to perform authorization based on the groups an user belongs to. Access is only granted if he is member of a set of groups.
To configure this method of authorization for a specific path just do:
Here, the group method expects one or more group names. When checking if an user is member of a Group, PicketLink will consider the parent-child relationship of each group defined in the configuration.