We're planning to use SiteMinder to implement fine-grained access control (FGA) based on user's inputs to the web application. E.g. if creditLimit > 10K then authorised.
To meet this requirement, we can create Form Post Variables and use them in SiteMinder policies. However, the web application is using JSON messages, NOT Form POST.
Questions:
1. Can we create variables for JSON messages in SiteMinder?
2. Can SiteMinder enforce FGA for JSON messages based on user's inputs?
Any advise is much appreciated.
thank you,
MunFai