One of the more powerful features of Castle is the ability to configure policies that allow you to control the inline action returned in the API response for the risk and filter endpoints. These actions can then be used to kick off workflows such as e.g. triggering a CAPTCHA at signup or prompting for two factor verification at login. All in real time.
While policies have been available to configure across all standard Castle events ($login, $registration, $transaction etc.), today we're launching the ability to create policies for any custom event. This improvement will allow you to set up custom rules to e.g. avoid invitation spam, excessive message posting or any other use case that is not represented by the Castle standard events.