Application programming interfaces

Application programming interfaces (APIs) are part of a plug-in model that you can use to add applications without disrupting existing applications.

Remote application programs run outside of the IBM Verify Identity Governance server Java™ virtual machine (JVM). Classes outside of the application packages are not intended to be started by a remote application. Classes in remote applications are documented under the IBM Verify Identity Governance application packages. Server extensions, which run in the IBM Verify Identity Governance server JVM, can use any of the classes listed in the published API documentation (Javadoc). They are Java classes that run in the same JVM of the caller. These APIs are used to develop IBM Verify Identity Governance customization and extensions that can plug into IBM Verify Identity Governance.

Several application APIs can be started by a remote application. A few server extension APIs in the dataservices package are included also. The following application APIs are intended to be started by a remote application:
Provisioning Policy API
Can search, add, modify, and delete provisioning policies in IBM Verify Identity Governance from a remote application.
Group API
Can search, add, modify, and delete an IBM Verify Identity Governance group.
ACI API
Can search, add, modify, and delete an access control information list (access right), but it does not verify authorization.
Reconciliation API
Can get, add, modify, and delete a reconciliation schedule for a particular service and triggers reconciliation.
The following server extension APIs are included:
  • com.ibm.itim.common.ComplexAttributeValue
  • com.ibm.itim.dataservices.model.ComplexAttributeHandler
  • com.ibm.itim.dataservices.model.domain.access.Access
  • com.ibm.itim.dataservices.model.domain.access.ProvisioningConfiguration
  • com.ibm.itim.dataservices.model.domain.access.NotificationOption