This section describes new features and guide changes in Oracle Access Management 11g.
The following sections describe the new features and changes.
The following developer content has been added or modified for this 188.8.131.52.0 release.
Updated Chapter 18, "Using the REST API for Identity Federation" to include enhanced support in this guide (E54425-06) for the October 2016 Oracle Access Management documentation set refresh.
Chapter 18, "Using the REST API for Identity Federation" has been added to this guide (E54425-05) for the October 2016 Oracle Access Management documentation set refresh.
Mobile Services has been renamed to Mobile and Social Services.
Chapter 19, "Developing a Message Processing Plug-in" has been added to this guide for the April 2016 Oracle Access Management documentation set refresh.
Guide change sections in this chapter for releases before this current patch set release (11g Release 2 Patch Set 3) have been removed for the September 2015 Oracle Access Management documentation set refresh. This includes details regarding 11g Release 2 Patch Set 2 (184.108.40.206.0) and earlier.
Some changes have been made to the organization of this guide for the September 2015 Oracle Access Management documentation set refresh.
Oracle Access Management 11g Release 2 (220.127.116.11.0) includes the following components. The new features discussed in this guide are described in the following sections.
This release adds the following functionality to the Access Manager Access software development kit (SDK):
Support for 11g cookies
Access Clients developed with the SDK can use the 11g agent profile, enabling the OAM Server to encrypt tokens using a secret key generated specifically for this Access Client. For more information, see Chapter 2.
API based initialization
Access Clients developed with the SDK can initialize by providing boot strap configuration from its own configuration store or mechanism. For more information, see Chapter 2.
Interfaces for developing Web SSO agents
Provides simple interfaces to enable WebSSO agents to work with Access Manager. For more information, see Chapter 2.
The following Access Manager APIs have been added:
Policy Administration API
The Oracle Policy Administration API supports representational state transfer (REST) interfaces for administering OAM policy objects as RESTful resources. The Policy Administration API enables Create, Read, Update, and Delete (CRUD) operations on policy objects. For more information, see Chapter 5.
Mobile and Social is a new Oracle Access Management service that acts as an intermediary between a user seeking to access protected resources, and the backend Access Management and Identity Management services that protect the resources. Mobile and Social provides simplified client libraries that allow developers to quickly add feature-rich authentication, authorization, and identity capabilities to registered applications. On the backend, the Mobile and Social server's pluggable architecture lets system administrators add, modify, and remove Identity and Access Management services without having to update user installed software. Mobile and Social features individual SDKs for iOS devices, Android devices, and Java. If you are developing an application on a platform or device that cannot use the iOS, Android, or Java SDKs, you can write code to directly send Mobile and Social REST calls to the Mobile and Social server. For more information about Mobile and Social, see Oracle Fusion Middleware Administrator's Guide for Oracle Access Management. For information about developing applications using Mobile and Social SDKs, see Part I, "Developing with Mobile and Social".
This release adds the User Provisioning API to Security Token Service. Use this API to develop a custom user provisioning plug-in. For more information, see Chapter 17.
Many Oracle Access Manager component names remain the same. However, there are several important changes. For more information, see "What's New in Oracle Access Management" in Oracle Fusion Middleware Administrator's Guide for Oracle Access Management.