Latest update: 7.0.2

FapiInteractionIdFilter

Tracks the interaction ID of requests, according to the Financial-grade API (FAPI) WG, as follows:

If a FAPI header is provided in a client request, includes the interaction ID in the x-fapi-interaction-id property of the response header.
If a FAPI header is not provided in the request, includes a new Universally Unique Identifier (UUID) in the x-fapi-interaction-id property of the response header.
Adds the value of x-fapi-interaction-id to the log.

Usage

{
  "type": "FapiInteractionIdFilter"
}

Properties

There are no configuration properties for this filter.

Example

The following example, based on "Validating Certificate-Bound Access Tokens", adds a FapiInteractionIdFilter to the end of the chain:

{
  "name": "mtls",
  "condition": "${matches(request.uri.path, '/mtls')}",
  "handler": {
    "type": "Chain",
    "config": {
      "filters": [ {
          "name": "OAuth2ResourceServerFilter-1",
           ...
        },
        {
          "type": "FapiInteractionIdFilter"
        }
      ],
      "handler": {
          "name": "StaticResponseHandler-1",
          ...
      }
    }
  }
}

More Information

org.forgerock.openig.filter.finance.FapiInteractionIdFilter

Financial-grade API - Part 1: Read-Only API Security Profile

EntityExtractFilter

FileAttributesFilter

Read a different version of :