Skip to main content

Access Control List Inbound Policy

The access control list inbound policy limits access to resources based on parameters of the request


This policy is in private beta. If you would like to use this please reach out to us: [email protected]



Be sure to read about policies

"name": "my-acl-policy-inbound-policy",
"policyType": "acl-policy-inbound",
"handler": {
"export": "AClPolicyInbound",
"module": "$import(@zuplo/runtime)",
"options": {
"testKey": "${user.sub}",
"modifier": {
"module": "$import(./modules/ab-test)",
"export": "abTestModifier"
  • name the name of your policy instance. This is used as a reference in your routes.
  • policyType the identifier of the policy. This is used by the Zuplo UI. Value should be acl-policy-inbound.
  • handler/export The name of the exported type. Value should be AClPolicyInbound.
  • handler/module the module containing the policy. Value should be $import(@zuplo/runtime).
  • handler/options The options for this policy:
    • policies
      The policies to enforce for the request