PlainID Dynamic Authorization Flow
Centralized policy management and enforcement across our banking application
User
Identity
Provider
Banking App
PlainID
Authorizer
Policy Engine
Data Gateway
Data Layer
User
Identity
Provider
1
Step 1: User Authentication
The user authenticates with the Identity Provider (IDP)
to establish their identity and retrieve their permissions.
Identity
Provider
Banking App
2
Step 2: Application Access
After authentication, the user accesses the Banking
Application within the portal layer.
Banking App
PlainID
Authorizer
3
Step 3: Authorization Request
The Banking Application forwards authorization requests
to the PlainID Authorizer components.
PlainID
Authorizer
Policy Engine
4
Step 4: Policy Evaluation
The PlainID Authorizer communicates with the Policy
Engine (PDP) to evaluate access policies based on
user role and attributes.
PlainID
Authorizer
Data Gateway
5
Step 5: Data Access
Based on the authorization decision, the system allows
appropriate access to data services and resources with
proper security controls in place.
Data Gateway
Data Layer
6
Step 6: Resource Access
Finally, the authorized requests access the underlying
data layer resources (databases, APIs, cloud services)
with the appropriate access controls applied.
Made by the SE Team for Walkthrough Purposes Only