keystone/doc/source/configuration/samples/policy-json.rst

policy.json

Use the policy.json file to define additional access controls that apply to the Identity service:

../../_static/keystone.policy.yaml.sample