Manual Chapter :
Posting user information to a web service
Applies To:
Show VersionsBIG-IP FPS
- 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.0
Posting user information to a web service
To post user information to a web service, you must first create a log publisher
that points to the server of the web service.
Post information about a user to a web service if you want this information to be
analyzed by a third-party web service, such as a risk engine, a SIEM, or some other
back-end system that can use this information.
- On the Main tab, click.The Anti-Fraud Profiles screen opens.
- From the list of profiles, select the relevant profile.The Anti-Fraud Profile Properties screen opens.
- In the Anti-Fraud Configuration area, clickRules.A list of alert types appears.
- In the list of alert types, click the alert type for which you want to define a system response.The alert type appears in the Rules area.
- In the Rules area, select theEnabledcheck box next to the alert type.
- If the alert type you selected is generated on the client-side by JavaScript, in theMinimum score to perform actionfield type a score between0-100.TheMinimum score to perform actionfield only appears for alert types that are generated on the client-side by JavaScript.
- From theActionlist, selectPost to Web Service.TheURL Path,Publisher, andPayloadfields appear.
- In theURL Pathfield, type the URL path of the web service.
- From thePublisherlist, select a log publisher that is configured to the web service.
- In thePayloadfield, you can use the default payload, or type any valid payload in the POST request body format.The variables listed next to the text input field, which you can use in your payload, are replaced with the actual values when the BIG-IP system sends the post request.
- ClickSave.The rule is now active.
The next time the BIG-IP system sends an alert of the type selected at step 4, the
BIG-IP system sends a POST request to a web service with the following data:
- user name
- client IP address
- event type
- score
- host header
- application cookies
- HTTP transaction ID generated by the system
- fingerprint data collected on the client