1.6.2 OFSAAI

Oracle Financial Services Analytical Applications Infrastructure (OFSAAI) authenticates users using any web browser with a user name/password to login into the application. It is also possible to restrict access to content and services based on user attributes or, conversely, make them accessible internationally.

You can authenticate the OFS Compliance Studio with the following:
  • Existing OFSAAI
  • Install OFSAAI and authenticate
OFSAAI is available with a pre-installed BD Pack or ECM Pack.

Figure 1-5 OFSAAI Authentication Process


Description of Figure 1-5 follows
Description of "Figure 1-5 OFSAAI Authentication Process"

The entities are:
  • End-User
  • OFS Compliance Studio Application
  • AAI
  • External Application
The AAI authentication process is as follows:
  1. A user sends a request to access the OFS Compliance Studio application.
  2. The application displays the OFS Compliance Studio application login page:
  3. The user enters the credentials on the login page.
  4. The application sends the request to AAI for validation.
  5. AAI validates the credentials:
    1. For valid credentials, it displays the OFS Compliance Studio home page to the user.
    2. For invalid credentials, it displays an authentication error.
  6. The External Application sends the request with Bearer/Basic token to access the application through REST API.
  7. The application validates the Authorization Header using Pre-Filters.
  8. The application sends the response to the External Application.

    REST API: Representational State Transfer (REST) is a software architectural style that defines a set of constraints to create Web services. Web services that conform to the REST architectural style, called RESTful Web services, provide interoperability between computer systems on the internet.