Policy evaluation is the act of processing an authorization query against the compiled policy rules. Oso evaluates queries like authorize(user, "edit", doc) by matching against the defined allow rules and any facts provided.
authorize(user, "edit", doc)
allow