reuse-surface/registry/capabilities/capability.authorization.policy-evaluate.md

id, name, summary, owner, status, domain, tags, maturity, external_evidence, discovery, availability, relations, consumer_guidance

id	name	summary	owner	status	domain	tags	maturity	external_evidence	discovery	availability	relations	consumer_guidance
capability.authorization.policy-evaluate	Authorization Policy Evaluation	Evaluate access decisions from policy-as-code rules for subjects, resources, and actions.	flex-auth	draft	helix_forge	authorization policy flex-auth	discovery availability current target confidence rationale D4 D6 medium flex-auth INTENT defines policy-as-code boundary and enterprise growth path. current target confidence rationale A2 A5 low Policy registry and evaluation logic exist in repo; service packaging evolving.	completeness reliability level name confidence basis satisfied_expectations broken_expectations out_of_scope_expectations C2 Partial low scope_vs_intent_and_consumer_expectations policy-as-code intent documented not yet indexed from flex-auth native registry identity proofing level confidence basis known_reliability_risks R1 low consumer_quality_signals early implementation phase	intent includes excludes use_cases Provide inspectable authorization decisions between verified identity and protected resources using policy-as-code. policy evaluation authorization registry decision explainability identity issuance authentication protocols	current_level target_level current_artifacts consumption_modes A2 A5 flex-auth/ source module	depends_on related_to capability.identity.subject-resolution capability.feature-control.evaluate	recommended_for not_recommended_for known_limitations planning authorization layer between identity and resources feature visibility toggles without policy intent maturity evidence is registry-external today

Authorization Policy Evaluation

Policy evaluation from flex-auth sits between identity resolution and protected systems.