Policies Overview
Gain complete control of your authorization Policies in Nodinite v7. This page guides you through managing, adding, editing, deleting, and restoring Policies—groups of Claims that define permission sets.
- ✅ Centralized management of all Policies
- ✅ Track which Roles use each Policy
- ✅ Powerful filtering and search capabilities
- ✅ Restore deleted Policies when needed
Note
Policies are only available when Nodinite is configured for OIDC/OAuth 2.0 authentication mode.
[!DANGER] Modifying Existing Policies Is Extremely Dangerous
Adding Claims to an existing Policy can lock out ALL users (including admins) because:
- Claims use AND logic - users must have ALL Claims in the Policy
- Claims must match EXACTLY what your Identity Provider (IDP) sends
- If you add a Claim your IDP doesn't provide, NO users will match
ALWAYS:
- ✅ Create NEW Policies instead of modifying existing ones
- ✅ Verify Claims exist in your IDP before adding them
- ✅ Test with non-admin accounts first
- ❌ NEVER modify the Administrators Policy without a tested backup plan
Get started now: Add or manage Policy user guide.
The Policies Overview in the Access Management menu is where a Nodinite Administrator manages Policies for OIDC/OAuth 2.0 authorization.
This page focuses on managing the list of Policies. For detailed information about how Policies work, authorization logic, and best practices, see What is a Policy?
In the Policies Overview, you have a sortable list of defined Policies. You can narrow an extensive list by typing characters into the filter text box.
The Policies Overview with the list of user-defined Policies.
Manage Policies
The available functionalities for Managing Policies are:
- Add new Policy - Create Policies
- Edit existing Policy - Modify Name, Description, or Claims
- Delete Policy - Remove Policies (can be restored)
- Restore deleted Policy - Recover previously deleted Policies
- Filter the list of Policies - Search by Name or Description
- Sort - Order by any column
Add new Policy
Click the "Add Policy" button to create a new Policy.
Click the "Add Policy" button to create a new Policy.
You'll navigate to the Policy detail page where you can:
- Enter Name and Description
- Add Claims using three tabs:
- New/Edit - Create or edit Claims
- All - Browse and select existing Claims
- Selected - View and manage Claims in this Policy
Edit Policy
To Edit an existing Policy, click the link in the Name column or open the menu from the "Actions" button and click "Edit".
Click the Policy name or 'Edit' menu item to edit an existing Policy.
Delete Policy
To Delete an existing Policy, navigate to the Policy detail page and click the "Delete" button at the bottom.
Click the 'Delete' button to delete an existing Policy.
Important
Deleted Policies are removed from Role assignments. Claims within the Policy are not deleted.
Restore deleted Policy
To Restore a deleted Policy, first check the "Include Deleted" checkbox.
Enable "Include Deleted" to show deleted Policies.
Then open the menu from the "Actions" button and click "Restore".
Click the 'Restore' menu item to restore a deleted Policy.
Filter Policies
Use the search filter at the top of the page to find Policies:
- Type any text to search across Name and Description fields
- Results update in real-time as you type
- Clear the filter to show all Policies
Sort Policies
Click any column header to sort the list:
- Name - Alphabetical order
- Created - Date/time order
- Changed - Date/time order
Click again to reverse the sort order (ascending/descending).
Understanding the Columns
| Column | Description | Sortable |
|---|---|---|
| Status | Visual indicator - shows "Available" or "Deleted" badge | Yes |
| Name | The Policy name (clickable link to Policy details) | Yes |
| Description | Description of the Policy's purpose | No |
| Created | Timestamp when the Policy was created | Yes |
| Changed | Timestamp when the Policy was last modified | Yes |
| Actions | Dropdown menu with Edit, Delete, and Restore options | No |
Quick Reference
Validation Rules
- Names must be unique - Case-sensitive
- Name is required - Description optional but recommended
- Deleted Policies - Can be restored, removed from Role assignments
- Claims not deleted - When Policy deleted, Claims remain
Tip
For detailed validation rules, naming conventions, authorization logic, and best practices, see What is a Policy?
Frequently Asked Questions
Can one Role have multiple Policies?
Yes! Roles can be assigned multiple Policies with OR logic. See What is a Policy? for authorization logic details.
What happens when I delete a Policy?
Can I rename a Policy?
Yes, edit the Policy and change the Name field. Ensure the new name is unique.
Why can't I create a new Policy?
- Name already exists - Choose unique name
- Missing required field - Name required
- Insufficient permissions - Need Administrator role
Tip
For authorization flow, AND/OR logic, and conflicting claims guidance, see What is a Policy?
Troubleshooting
Cannot add Policy - "Name already exists"
- Choose different name
- Check "Include Deleted" - may have been deleted
- Restore deleted Policy if appropriate
Policy doesn't appear in Role
- Policy assignment managed through backend/API
- Contact system administrator
- Verify Policy exists and is not deleted
Cannot delete Policy
- Refresh page and try again
- Check browser session hasn't expired
- Another administrator may be editing the same Policy
Next Step
Add or manage Policy - Create and manage Policies
What is a Claim? - Learn about Claims
What is a Role? - Understand Roles
Related Topics
Policies:
What is a Policy? - Understanding Policies
Add or manage Policy - Policy management guide
Claims:
What is a Claim? - Understanding Claims
Claims Overview - Manage all Claims
Add or manage Claim - Claim management guide
Roles:
What is a Role? - Understanding Roles
Roles Overview - Manage all Roles
Access Management:
Access Management - Authorization overview
Install Nodinite v7 - OpenID - Configure OIDC/OAuth 2.0