Proposed functioning Cookie management 1 IDM REST API

/ Proposed functioning Cookie management 1. IDM REST API Appel API avec identifiant utilisateur Libreservice Connexion utilisateur à l’application Web JS widget 2. 3. Enable cookie consent management in webapplication using a JS Widget Use the IDM RESTAPI to register cookie consent End-User can connect to IDM Self-service to manage her cookie consent ü All user consent are stored and managed at the same place (Oauth/OIDC, UMA, T&C, personal info, email opt-in/opt-out, cookie consent) ü For each cookie, it is possible to record the consent of the user as well as contextual elements such as: the date of the consent, the IP address or the type of browser from where the consent was realized ü Provide a Forge. Rock example for a Java. Script widget Copyright © 2019 Forge. Rock. All rights reserved

/ User flow User browsing Application <-> Forge. Rock interactions Cookie management Cookie Mgt browsing with Cookie Yes No Landing Page browsing without Cookie REST API IDM Storing C No Connect C Yes Cookie Mgt C Ø When the person is not connected, the cookie management is done independently of Forge. Rock (but can be supported by the Widget) Ø Cookie Consent/rejects are stored in IDM only if the end-user is connected Copyright © 2019 Forge. Rock. All rights reserved IDM