Created question in FIWARE Q/A platform on 12-12-2017 at 17:12
Please, ANSWER this question AT https://stackoverflow.com/questions/47777700/authzforce-does-not-store-policies

Question:
Authzforce does not store policies?

Description:
I am developing a new application using Fiware and I am interested in adding a security layer using the specific Fiware GE for this:

IdM Keyrock
Wilma PEP Proxy
AuthZForce PDP

I started by setting up my own local installation of these components, starting from this tutorial. After a few minutes I was able to successfully install all three components up & running.

Then I started to create applications, roles, permissions, assign roles to user and so on. The thing is after a while playing with the components AuthZforce crashed and I had to re boot it. After that I noticed that all policies and domains was erased from AuthZForce.

I did some digging and discovered that all stuff are maintained in memory for AuthZForce and also in to IdM database, so if your AuthZForce crashes then you lose all your policies and application domains unless you recover it from IdM database.

The problem is when you restart AuthZForce all policies and application that are stored in IdM databases are not automatically synchronized with AuthZForce. To force the synchronization you must perform some change to your Application, for example using the IdM Web interface to change the application description. Then IdM re-create application domain and all application policies.

Is there any reason why this is so? Why the synchronization is not done automatically? Can the AuthZForce itself be responsible for the persistence of the policies?