This section describes new features available in Oracle Access Management 11g.
The following sections describe the new features and changes:
This guide (Part no. E27134-03) has been updated in several ways. Following are the sections that have been added or changed.
Revised information about multi-step authentication plug-in development and added code examples. See Chapter 3.
Oracle Access Management 11g Release 2 (11.1.2) includes the following components. The new features discussed in this guide are described in the following sections.
This release adds the following functionality to the Access Manager Access software development kit (SDK):
Support for 11g cookies
Access Clients developed with the SDK can use the 11g agent profile, enabling the OAM Server to encrypt tokens using a secret key generated specifically for this Access Client. For more information, see Chapter 2.
API based initialization
Access Clients developed with the SDK can initialize by providing boot strap configuration from its own configuration store or mechanism. For more information, see Chapter 2.
Interfaces for developing Web SSO agents
Provides simple interfaces to enable WebSSO agents to work with Access Manager. For more information, see Chapter 2.
The following Access Manager APIs have been added:
Policy Administration API
The Oracle Policy Administration API supports representational state transfer (REST) interfaces for administering OAM policy objects as RESTful resources. The Policy Administration API enables Create, Read, Update, and Delete (CRUD) operations on policy objects. For more information, see Chapter 5.
Mobile and Social is a new Oracle Access Management service that acts as an intermediary between a user seeking to access protected resources, and the backend Access Management and Identity Management services that protect the resources. Mobile and Social provides simplified client libraries that allow developers to quickly add feature-rich authentication, authorization, and identity capabilities to registered applications. On the backend, the Mobile and Social server's pluggable architecture lets system administrators add, modify, and remove Identity and Access Management services without having to update user installed software. Mobile and Social features individual SDKs for iOS devices and Java. If you are developing an application on a platform or device that cannot use the iOS or Java SDKs, you can write code to directly send Mobile and Social REST calls to the Mobile and Social server. For more information about Mobile and Social, see Oracle Fusion Middleware Administrator's Guide for Oracle Access Management. For information about developing applications using Mobile and Social SDKs, see Part III, "Developing with Mobile and Social".
This release adds the User Provisioning API to Security Token Service. Use this API to develop a custom user provisioning plug-in. For more information, see Chapter 13.
There are no changes to Security Token Service APIs in this release.
11g Release 1 provides a pure Java software developer kit (SDK) for the creation of custom Access Clients and extensions of authentication and authorization functionality. This release also provides compatibility with the Oracle Access Manager 10g JNI SDK, which can be migrated to use the Oracle Access Manager 11g release.
Many Oracle Access Manager component names remain the same. However, there are several important changes. For more information, see "What's New in Oracle Access Management" in Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.