Cloud Identity

IBM Verify: Custom Verification Data

Share this post:

The release of IBM Verify v2.1.1 (iOS) and v2.1.0 (Android) brings new functionality enhancing the user experience when approving or denying a transaction.

In this article I’ll show you how to send additional transaction information to IBM Verify with IBM Cloud Identity Verify (CIV).

Getting Started

CIV is predominately API driven, so we’ll be using a cURL command to create a new vertification with custom data.  You add your custom transaction attributes in the additionalData section.  So let’s assume that you’ve registered an authenticator with IBM Verify against your CIV tenant, the JSON payload we’re sending is as follows.

{
    "transactionData": {
        "message": "Thanks for dining with us, your bill came to \u20AC87.33 ",
        "originIpAddress": "192.168.222.222",
        "originUserAgent": "Mozilla Firefox 11",
        "additionalData": [
            {
                "name": "Name",
                "value": "Cantina e Cucina \ud83c\udf55"
            },
            {
                "name": "originLocation",
                "value": "Via del Governo Vecchio, 87, 00186 Roma RM, Italy"
            }
        ]
    },
    "pushNotification": {
        "message": "There is an action that needs your attention",
        "send": true,
        "sound": true
    },
    "authenticationMethods": [
        {
            "id": "22537daa-9577-4a8f-8c46-06a35df83123",
            "methodType": "signature"
        }
    ],
    "logic": "OR",
    "expiresIn": 600
}

In cURL the above payload can be represented as:

curl -X POST \
  https://yourtenant.ice.ibmcloud.com/v1.0/authenticators/0efee45b-04c4-4dea-8660-2bea6597507d/verifications \
  -H ': ' \
  -H 'Accept: application/json' \
  -H 'Authorization: Bearer gkLjS9Z7GaW1XzWy5pjGSfblEySl49GRAnH4gabc' \
  -H 'Content-Type: application/json' \
  -d '{
    "transactionData": {
        "message": "Thanks for dining with us, your bill came to \u20AC87.33 ",
        "originIpAddress": "192.168.222.222",
        "originUserAgent": "Mozilla Firefox 11",
        "additionalData": [
            {
                "name": "Name",
                "value": "Cantina e Cucina \ud83c\udf55"
            },
            {
                "name": "originLocation",
                "value": "Via del Governo Vecchio, 87, 00186 Roma RM, Italy"
            }
        ]
    },
    "pushNotification": {
        "message": "There is an action that needs your attention",
        "send": true,
        "sound": true
    },
    "authenticationMethods": [
        {
            "id": "22537daa-9577-4a8f-8c46-06a35df83123",
            "methodType": "signature"
        }
    ],
    "logic": "OR",
    "expiresIn": 600
}'

Transaction Output

You’ll find originIpAddress and originUserAgent are mandatory attributes in the payload, so ensure you source this information before invoking the /verifications API.

 

Click here to rate this article

Rate this article :

More Cloud Identity stories
By Carsten Hagemann on June 20, 2022

Getting started with the IBM Verify SDK

The IBM Verify SDK is a library available for Android and iOS and provide classes to create rich native client mobile applications that interact with IBM Security Verify and IBM Security Verify Access, so that enterprises can easily integrate flexible and intelligent multi-factor authentication into their applications. Multi-factor authentiation (MFA) verifies an indiviual’s identity by […]

Continue reading

By Jeroen Tiggelman on August 4, 2019

IBM Security zSecure Suite 2.4 announced

IBM Security zSecure suite V2.4 was announced on July 23, 2019 with a planned availability date of September 30, 2019. You can read the US announcement letter here. RACF has made new JSON Web Token functionality in support of Multi-Factor Authentication also available for z/OS V2.2 and V2.3. Details about zSecure compatibility fixes can be […]

Continue reading

By Gerard Boekhoud on July 24, 2019

IF001 for IGI 5.2.5.1 now available

On July 19, 2019 we made  IF001 on top of IGI 5.2.5.1 publicly available on FixCentral. This iFix include some strong performance improvements especially within the Access Certification module. Improvements are made in the following areas: a. Time to launch Campaign Summary Page (Especially in the event of a high number of campaigns). This improves by […]

Continue reading