Learn how to use the Trust Framework to add an attribute for the invitee list of other game players.
To create a policy that meets your business requirements, you’ll need two attributes:
- To determine whether the user’s email address comes from a generic domain, you’ll use the built-in PingOne user email address attribute for the user authenticated to the application.
- To determine whether the user is inviting others to play the Meme Game, you’ll create an attribute in the Trust Framework for the invitee list of other game players. You'll extract the invitee list from the API request body.
You’ve added an attribute in the Trust Framework for the invitee list of other game players.
Next, you'll put everything together in a custom policy that authorizes the specific conditions under which a user can start a game.