Skip to main content

Access Control List Inbound Policy

The access control list inbound policy limits access to resources based on parameters of the request

Early Access

This policy is in private beta. If you would like to use this please reach out to us:


"name": "my-acl-policy-inbound-policy",
"policyType": "acl-policy-inbound",
"handler": {
"export": "AClPolicyInbound",
"module": "$import(@zuplo/runtime)",
"options": {
"testKey": "${user.sub}",
"modifier": {
"module": "$import(./modules/ab-test)",
"export": "abTestModifier"
  • name the name of your policy instance. This is used as a reference in your routes.
  • policyType the identifier of the policy. This is used by the Zuplo UI. Value should be acl-policy-inbound.
  • handler/export The name of the exported type. Value should be AClPolicyInbound.
  • handler/module the module containing the policy. Value should be $import(@zuplo/runtime).
  • handler/options The options for this policy:
    • policies
      [object Object]

Read more about how policies work