Policy of Policies

flipswitchingmonkey · October 17, 2025, 8:57am

This will probably be a feature request (and would likely cause things to get even more convoluted ) but… are there any plans to make Policies group-able, as in: a policy can contain multiple other policies? Basically the same as how roles can contain multiple policies.

Background for my question and use case: we are currently applying policies based on AD groups that a user receives during the SSO login. In a project with very granular permissions and many policies, this would result in a long list of AD groups to be created and managed. Unfortunately we can’t just use roles since a user can only have a single role. So in this case it would be ideal to create policy groups under a new policy name…

Beth · October 17, 2025, 1:48pm

Hey @flipswitchingmonkey, have you looked into whether mapping aggregate/granular groups to a single role in the AD would be a solution here? Multiple policies can belong to a single role or user, is this something you’re using currently? Could you tell us a bit more more about your set up and how you use the AD currently and what method you’d ideally like to have for this use case?

Lastly, if you do want to add this as a feature request at any point, that would now be done via the Directus roadmap submit request function. Thanks!

Topic		Replies	Views
/uses/me or /users/{id} didn't include policies in 11.8.0? Help	2	67	June 23, 2025
Clarification on Policy Order, Parent Roles, and User-Specific Permissions Help	0	42	June 25, 2025
Require 2fa, multiple policies Help	1	31	June 14, 2025
Access rights based on two conditions Help data-modeling	1	58	June 2, 2025
Multiple permission rules per collection Help	1	74	June 17, 2025

Policy of Policies

Related topics