Azion Fingerprint enables you to capture device and network data to better identify devices accessing your applications. It can be classified as a Session Fingerprinting integration and uses the collected data to generate a unique identifier and add it as a request header.
This integration includes two features:
_azfp_sc, so this data is always sent by the browser. Even when the usage of this script is optional, it increases the precision of the integration.
- An edge function (mandatory): a function to capture connection-related data as well as the “frontend fingerprint” (created by the browser script), when available, to create the session fingerprint. It’ll then add this fingerprint as a request header named
Embedding the scriptSection titled Embedding the script
- Audio and video support
- Canvas rendering
- If the browser has access to device-level API, such as accelerometer and gyroscope
- Manufacturer’s data
- WebGL rendering
Then, it creates a unique identifier containing all this information and sets it as a session cookie named
_azfp_sc, as cookies are always sent in the requests made by the browser. The script checks if the session cookie already exists. If so, it won’t create a new one.
- You can find the code in this file.
- Then, add it on your HTML source. Example:
Getting the integrationSection titled Getting the integration
To install Azion Fingerprint:
- Access Real-Time Manager (RTM) > Marketplace.
- On the Marketplace’s homepage, select the integration’s card.
- Once the integration’s page opens, click the Get It Now button, at the bottom-right corner of the page.
A successful message appears to confirm your integration is installed.
Configuring the integrationSection titled Configuring the integration
Setting up the Edge FirewallSection titled Setting up the Edge Firewall
To do so, follow the steps:
- On the upper-left corner, select Products menu > Edge Firewall in the SECURE section.
- Click the Add Rule Set button.
- Give an easy-to-remember name to your new rule.
- Select the domains you want to protect with the function.
- Enable the Edge Functions switch in the Edge Firewall Modules section.
- Click the Save button.
Done. Now you’ve instantiated the rule for your function and have access to edge functions on your edge firewall.
Setting up the functionSection titled Setting up the function
While still on the Edge Firewall page:
- Select the Functions tab.
- Click the Add Function button.
- Give an easy-to-remember name to your instance.
- On the dropdown menu, select the Fingerprint function.
This action will load the function, showing a form with the function code and, just above it, two tabs: Code and Args.
By clicking the Code tab, you’ll be able to navigate through the source code but not to change it.
On the Args tab, you’ll pass your variables. In this case, you must declare only the variables that you want the function to ignore, as an array of strings. It isn’t a required action. If blank, the function will collect all the data.
To understand how to configure the integration, contact the Azion support team and request the solution documentation.
- When you’re done, click the Save button.
Setting up the Rules EngineSection titled Setting up the Rules Engine
To finish, you have to set up a Rules Engine to configure the criteria and the behavior to run the function.
Still in the Edge Firewall page:
- Select the Rules Engine tab.
- Click the New Rule button.
- Give an easy-to-remember name to the rule.
- You can add a description, but it’s an optional step.
- Select a criteria to run and catch the domains that you want to run the integration on.
- Below, select a behavior to the criteria. In this case, it’ll be Run Function.
- Select the adequate function according to the name you gave it in the instantiate step.
- Click the Save button.
Done. You now have you can collect session data by using Azion Fingerprint.