After you’ve protected your service against unauthorized use, you create the objects that are needed for granting authorizations to business users to use your service.
For granting authorizations, follow the steps for restriction fields and types and for creating an IAM app, a business catalog, and a business role template. You should define your own authorization context in the behavior definition first, which can be used to prefill authorization defaults.