Skip to main content
The Reva API provides a complete set of services to manage fine-grained access control, policy evaluation, data ingestion, and access map management for authorization governance. The APIs are organized into the following functional categories:
  1. Authorization APIs - AuthZEN Compliant
    Provides real-time access evaluation based on subject, action, resource, and context. This enables fine-grained, policy-based access decisions for applications.
    • Evaluate access requests.
    • Supports contextual data for dynamic decisions.
    • Fully compatible with AuthZEN evaluation models.
  2. Data Ingestion APIs
    Allows bulk management of entities, attributes, relationships, and parent-child hierarchies that are used during policy evaluation.
    • Create, update, replace, and delete entities.
    • Bulk ingestion support for efficient data synchronization.
    • Entity models align with policy schemas.
  3. Access Map APIs
    Manages and refreshes the Access Map, which represents the resolved permissions and relationships for optimized policy evaluations.
    • Refresh Access Map for active policy versions.
    • Keep authorization decisions performant by maintaining the latest entity relationships.
Security: All APIs are secured using Bearer Token authentication (Authorization: Bearer token), ensuring that only authorized clients can interact with the system.
I