Define and Protect Individual Resources According to the UMA Standard

Protect APIs without the lengthy time it takes recoding. The ForgeRock Identity Platform, UMA Protector, built from ForgeRock Identity Gateway, includes:

  • Multi-service protection gateway – Provides an enforcement point over any number of services or APIs, so that multiple UMA resource servers to which the end user has login accounts can be protected by the authorization server.
  • Requester trust elevation for increased security – Ensures that access requesters aren’t just in possession of a “secret link” but goes above and beyond OAuth 2.0 in proving requesters are who they say they are, according to resource owner policy.
  • Dynamic policy enforcement point onboarding – Lets your web API register its digital resources with an UMA authorization server as those resources are created and changed.
  • User-Managed Access (UMA) standard – “UMA-nizes” your web API, turning it into a conforming and interoperable UMA resource server that takes advantage of the UMA Provider’s value-added features.

Enable Privacy, Consent, and Trusted Digital Relationships

GET WHITE PAPER

Need help planning your identity and access management project?

Technical Resources

Resources for our Identity Gateway offering