Creating a Verification Algorithm

Guidelines

• The assembly must target .NET Standard 2.1 or .NET 6.0. These will be referred to as the supported .NET platforms.

• You may write only one implementation class of the IDataClassificationVerifier interface per assembly.

• It is only possible to upload one assembly per verification algorithm. In case your code requires usage of additional referenced assemblies, you must pack them all into one assembly.

Note: Verification algorithm assemblies written in previous versions of File Access Manager (in .NET Framework 4.5) must be removed, and re-written to target one of the supported .NET platforms as mentioned above, and uploaded again.

Walkthrough

1. Create a new .NET Framework Class Library targeting a supported .NET platform.

2. In your project, add a reference to the assembly FAM.DataClassification.Verifiers.dll. This assembly is provided by SailPoint, and contains the IDataClassificationVerifier interface. This assembly can be downloaded from Compass.

3. Create a new class that implements the IDataClassificationVerifier interface.

4. This class must provide an implementation of the only public method defined in the interface named “Verify.” This method takes as an argument a match result string and returns a boolean that denotes if the verification passed or failed.

5. Build your project, and upload the output assembly as described in Verification Algorithms screen.

6. This uploaded verification algorithm will now be available in the verification algorithm dropdown list of the Policy Object screen, alongside the other built in or uploaded algorithms.

Examples

Below is an example of code to create a verification dll that verifies that the number passed is even.

using FAM.DataClassification.Verifiers;

namespace VerificationAlgorithmExample

{

  public class EvenNumberVerificationAlgorithm : IDataClassificationVerifier

  {

    /// <summary>

     /// Example for a custom verifier that verifies that the input is an even number

    /// </summary>

    /// <param name="value">A regular expression match result</param>

    /// <returns>True if passed verification, False if failed</returns>

    public bool Verify(string value)

    {

        if (long.TryParse(value, out long parsedLong))

        {

            return parsedLong % 2 == 0;

        }

        return false;

    }

  }

}