Event producers
IAM plugins can produce events that can be picked up and used, i.e., by event subscribers. For example, the plugin Airlock 2FA Token Controller produces an Airlock 2FA Device Deleted event in the Adminapp when an administrator deletes an end-user's Airlock 2FA device.
Event producers are built-in and can neither be configured nor extended.
The following list shows what parts of IAM produce which events:
Event | Corresponding event type | Producer | |
|---|---|---|---|
Module | Feature or plugin | ||
|
| Loginapp | Airlock 2FA Activation Step |
|
| Adminapp | Airlock 2FA Token Controller |
Loginapp | Airlock 2FA Device Deletion Step | ||
|
| Loginapp | Airlock 2FA Authentication Step / Airlock 2FA Mobile Only Authentication Step / Airlock 2FA Usernameless Authentication Step / Airlock 2FA Self-Service Approval Step / Airlock 2FA Public Self-Service Approval Step / Airlock 2FA Transaction Approval Step |
|
| Loginapp | Authentication Flow |
|
| Adminapp | User Profile edit User Authentication Method REST API |
Loginapp | Complete Migration Step | ||
|
| Adminapp | User Profile edit |
Loginapp | Apply User Data Edit Change | ||
|
| Loginapp | Cronto Activation Step |
|
| Adminapp | Cronto Token Controller |
Loginapp | Apply Cronto Device Deletion | ||
|
| Adminapp | Cronto Token Controller |
Loginapp | Cronto Letter Order Step | ||
|
| Adminapp | Generic Token Controller |
Loginapp | Device Token Self-Service REST API | ||
|
| Loginapp | Device Token Self-Service REST API |
|
| Adminapp | User Profile edit (“Email User Profile Item”) Generic Token Controller (Token Model) |
Loginapp | Apply Email Change | ||
|
| Adminapp | User Profile edit (“Email User Profile Item”) Generic Token Controller (Token Model) |
Loginapp | Apply Email Change | ||
|
| Adminapp | User Profile edit (“Email User Profile Item”) Generic Token Controller (Token Model) |
Loginapp | Apply Email Change | ||
|
| Adminapp | FIDO Token Controller |
|
| Loginapp | FIDO Registration Step |
|
| Loginapp | Every flow step, see below |
|
| Loginapp | Authentication Flow |
|
| Adminapp | mTAN/SMS Token Controller |
Loginapp | Apply mTAN Deletion | ||
|
| Adminapp | mTAN/SMS Token Controller |
Loginapp | Apply mTAN Edit Change | ||
|
| Adminapp | mTAN/SMS Token Controller |
Loginapp | Apply mTAN Registration Change | ||
|
| Loginapp | OATH OTP Activation Step |
|
| Loginapp | OATH OTP Activation Step |
|
| Adminapp | Password Token Controller |
Loginapp | Password Change Self-Service Step Mandatory Password Change Step Password Reset Step | ||
|
| Adminapp | Password Token Controller |
Loginapp | Password Letter Order Step | ||
|
| Adminapp | User Management |
Loginapp | Loginapp REST Self-Registration | ||
|
| Adminapp | User Management |
Service Container *) | Delete Users Task | ||
|
| Adminapp | User management Administrator management |
Loginapp | Failed Factor Attempts Counting Processor User Validity Processor User Persisting Step Lock Self-Service Step | ||
Service Container *) | Lock Inactive Accounts Task | ||
|
| Adminapp | Role management in the user profile |
|
| Adminapp | Unlock User Step |
Loginapp | User Profile | ||
*) The Service Container does not support regular Event subscribers. Events produced in the Service Container can only be processed as reliable events. See Reliable event delivery for more details.
The Generic Step Result is an event type that is produced by every flow step in the Loginapp. It provides the following attributes to the event subscriber: result type, next step, error code, and all additional attributes. When configuring a Generic Step Result plugin in the event subscriber, extensive filtering controls when a particular event subscriber should be executed.