Access authorization based on physical location

1 . A method for access authorization to a protected resource, the method comprising: provisioning, by one or more computer processors, a physical access badge identifier to a door controller, wherein provisioning a physical access badge identifier to a door controller, includes: creating, by one or more computer processors, one or more user accounts, wherein the one or more user accounts includes at least an employee ID, an authorization level, and a user access password; retrieving, by one or more computer processors, user information from the one or more user accounts associated with a user; associating, by one or more computer processors, the physical access badge identifier with user information from the one or more user accounts associated with the user; and storing, by one or more computer processors, the one or more user accounts associated with the user in a database; receiving, by one or more computer processors, a swipe event, wherein the swipe event includes a door controller identifier and the physical access badge identifier, wherein receiving a swipe event, includes: sending, by one or more computer processors, the swipe event to a physical access control system; and storing, by one or more computer processors, the door controller identifier and the physical access badge identifier in a database; creating, by one or more computer processors, an authorization request to access a protected resource, wherein the authorization request is created in response to receiving a request from a user for access to a protected resource from a first room, and wherein the protected resource is an information technology (IT) application accessible only in the first room; identifying, by one or more computer processors, one or more security policies for the protected resource, wherein identifying one or more security policies for the protected resource, includes: retrieving, by one or more computer processors, a physical access badge identifier for a user from a database; retrieving, by one or more computer processors, a swipe event associated with the physical access badge identifier for the user from a database, wherein the swipe event identifies a physical location for a most recent swipe event associated with the physical access badge identifier; and identifying, by one or more computer processors, the one or more security policies for the protected resource associated with the physical location of the physical access badge identifier of the user and the swipe event; determining, by one or more computer processors, whether to permit access to the protected resource based, at least in part, on the one or more security policies and the swipe event, wherein determining whether to permit access to the protected resource includes at least retrieving, by one or more computer processors, a plurality of badge identifiers for other users currently located in the first room with the user and comparing the plurality of badge identifiers for other users to the one or more security policies for the protected resource; responsive to a determination to permit access to the protected resource, permitting, by one or more computer processors, access to the protected resource, wherein permitting access to the protected resource includes validating an authentication session for a user; and responsive to a determination to not permit access to the protected resource, denying, by one or more computer processors, access to the protected resource, wherein denying access to the protected resource includes invalidating an authentication session for a user.