Previous Topic: Setting the Personal Assurance MessageNext Topic: Setting Custom User Attributes

RiskMinder Web Services Developer's GuideManaging Users and AccountsFetching the Personal Assurance Message

Fetching the Personal Assurance Message

To read the PAM that is set for a user, you must use the getPAM operation. This section walks you through the following steps for fetching the PAM of the users:

Preparing the Request Message

The following table lists the elements of the getPAMRequest message.

Element

Mandatory

Description

UserId/orgName

No

The name of the organization to which the user belongs.

Note: If the organization name is not passed, then the Default Organization is used for the operation.

UserId/userName

Yes

The unique identifier with which the user is identified in the system.

UserId/userRefId

No

The identifier used as a reference to track different operations performed by a user.

clientTxId

No

The unique transaction identifier that your calling application can include. This identifier helps in tracking the related transactions.

Invoking the Web Service

To fetch the PAM of a user:

  1. (Optional) Include the authentication and authorization details in the header of the getPAM operation. See"Managing Web Services Security" for more information on the header elements.
  2. Use the getPAMRequest elements to collect the user information, as listed in the table.
  3. Use the getPAMRequest message and construct the input message by using the details specified in the preceding step.
  4. Invoke the getPAM operation of the ArcorUserRegistrySvc service to get the PAM for the user.

    This operation returns the getPAMResponse message that includes the transaction identifier, authentication token, and PAM. See the following section for more information on the response message.

Interpreting the Response Message

The response message, getPAMResponse, returns the transaction identifier and the authentication token in the SOAP envelope header. The SOAP body includes the PAM for a successful transaction and the Fault response for an error condition.

See the following table for more information on the elements returned for a successful transaction. Refer to appendix, "Exceptions and Error Codes" if there are any errors.

Element

Description

Header Elements

udsTransactionID

The unique identifier of the transaction performed by using UDS.

authToken

The authentication token that is returned if the credential verification to access the Web service was successful. This token eliminates the need for you to present the authentication credential for successive access to the Web service.

By default, the authentication token is valid for one day, after which you need to authenticate again.

Body Elements

UserId/orgName

The name of the organization to which the user belongs.

UserId/userName

The unique identifier with which the user is identified in the system.

UserId/userRefId

The identifier used as a reference to track different operations performed by a user.

PAM

The Personal Assurance Message (PAM) displayed to the user, when they try to access a resource protected by RiskMinder.

pamImageURL

The URL that contains the image displayed to the user when they try to access a resource protected by RiskMinder.