Integrating Native Java Applications 4-5

4.5 Oracle Adaptive Access Manager APIs

Oracle Adaptive Access Manager provides APIs to: ■ Collect and track information from the client application ■ Capture user login information, user login status, and various attributes of the user session to determine device and location information ■ Collect transaction details For descriptions of all authentication scenarios and typical flows, see Chapter 2, Natively Integrating with Oracle Adaptive Access Manager. The following sections provide details of the following important methods: ■ handleTrackerRequest ■ createTransaction ■ updateTransaction ■ handleTransactionLog ■ updateTransactionStatus ■ updateLog ■ updateAuthStatus ■ processPatternAnalysis ■ markDeviceSafe ■ IsDeviceMarkedSafe ■ clearSafeDeviceList

4.5.1 handleTrackerRequest

handleTrackerRequest captures fingerprint details and identifies the device; it may also capture fingerprint details for a given request time, which can be in the past. public CookieSet handleTrackerRequestString requestId, String remoteIPAddr, String remoteHost, String secureCookie, int secureClientType, String secureClientVersion, String digitalCookie, int digitalClientType, String digitalClientVersion, int fingerPrintType, String fingerPrint, int fingerPrintType2, String fingerPrint2; public CookieSet handleTrackerRequestString requestId, Date requestTime, String remoteIPAddr, String remoteHost, String secureCookie, int secureClientType, String secureClientVersion, String digitalSigCookie, int digitalClientType, 4-6 Oracle Fusion Middleware Developers Guide for Oracle Adaptive Access Manager String digitalClientVersion, int fingerPrintType, String fingerPrint, int fingerPrintType2, String fingerPrint2; The returned object has functions to access its contents. They are: public String getFlashCookie public String getSecureCookie public String getRequestId public VCryptResponse getVCryptResponse

4.5.2 createTransaction

createTransaction creates a new transaction. public VCryptResponse createTransaction TransactionCreateRequestData transactionCreateRequestData; Table 4–1 handleTrackerRequest Parameters Parameter Description requestId The login session ID; this is the ID that should be used in all API calls for the login session remoteIPAddr The IP from where the request came; extracted from the HTTP request remoteHost The host name from the machine where the request came; optional secureCookie The secure cookie; passed only if it is received from a browser secureClientType An enumeration value that identifies the type of client used for authentication. The corresponding enum name is auth.client.type.enum. secureClientVersion The version of the client; optional digitalCookie The digital signature cookie; it can be the flash cookie; it is passed only if it is sent by a browser digitalClientType The digital client type that specifies the type of flash client used; if not available, use the value 0 digitalClientVersion The version of the digital client; it can be the version of the flash client fingerPrintType Refer to the OAAM enum vcrypt.fingerprint.type.enum for a list of valid values. Currently the enum has following values: ■ browser=1 ■ flash=2 It is recommended to use 1 for browser as the value of fingerPrintType as this parameter corresponds to the browser fingerprint type fingerPrint The fingerprint; if it describes browser characteristics, then the header is parsed into this string; it represents the browser header information fingerPrintType2 Used in case the same request has multiple fingerprints; it is defined in the properties file; optional fingerPrint2 The second fingerprint value; optional requestTime The time at which the request was made