ConnectorsSetup GuidesFraud

Forter Connector

Forter is a fraud prevention service that provides a real-time evaluation at different touchpoints during the user's journey. Forter uses machine learning to analyze account activities such as sign-ups and logins, providing risk assessments to ensure the security of your users.

Descope's Forter connector helps you astablish a machine-learning based risk score on user's behavior, thus helping you detect fraud or hacker associated connections to your system. The connector offers you a result with multiple call-to-actions to use inside your flow, such as a recommendation to log in the user.

Setting Up The Forter Connector

To integrate the Forter connector, follow the steps below:

Connector Setup

Set up the necessary inputs:

  • Connector name: Assign a custom name for your connector, especially useful when using multiple connectors originating from the same template.
  • (Optional) Connector description: A brief description of your connector's purpose.

Proceed by providing the Forter Site ID and Secret Key, found here.

Site ID: The Forter site ID.

Secret Key: The Forter secret key.

Test & Save

The Forter connector offers a way to test the integration with a specified email and IP address.

  • Override IP Address: Override the user IP address.
  • Override User Email: Override the user email.

CAUTION

Overriding the user IP address or email is intended for testing purpose and should not be utilized in production environments.

  • Validate your configuration by clicking the Test button and observing the Test Results section.
  • Conclude the setup process by selecting Create.

Implementing the Forter Connector

Select or Create a Flow

Access your Dashboard and go to flows. Opt for an existing flow or generate a new one.

Integration

Click on the blue plus sign inside the flow builder and choose "Connector". You should be able to see the new connector actions as shown below:

forter flow actions

Log In

Forter / Login Check is designated to be used after log-in to asses the user's behavior given the parameters.

Customer's account UID: In the merchant's site. Should not be the user email. Leave empty if no account ID is available.

Login Method Type: The authentication method used to log in. Possible values are:

  • "PASSWORD"
  • "SMS"
  • "SOCIAL"
  • "EMAIL_LINK_OTP"
  • "AUTH_TOKEN_REFRESH"
  • "APPLE"
  • "MFA_CODE_REFRESH"
  • "EMAIL_MAGIC_LINK"
  • "OTHER"

Login Status: The status of the login attempt. Possible values are:

  • "SUCCESS"
  • "FAILED"
  • "BLOCKED_BY_MERCHANT"
  • "ACCOUNT_DOES_NOT_EXIST"

User Input Type: The type of identifier used by the user to log in. Possible values are:

  • "USERNAME"
  • "EMAIL"
  • "PHONE"
  • "SOCIAL"

User Email: The user's email. Leave empty if no email is available.

User Phone: The user's phone. Leave empty if no phone is available.

Sign Up

Forter / Sign Up Check is designated to be used after sign-up to asses the user's behavior given the parameters listed below:

Customer's account UID: In the merchant's site. Should not be the user email. Leave empty if no account ID is available.

Response

The response object will populate the context key connectors.forter_loginCheck / connectors.forter_signUpCheck.

The fields that can be used inside the flow are:

  • forterDecision - The latest Forter decision regarding the attempted action.
  • recommendation - A specific recommendation for an action that might help the customer to complete their transaction/action (e.g. verify phone via SMS, verify via push notification, verify email, perform a 3DS check, etc.)
  • verificationMethod - The specific verification method to be used when verification is required according to "recommendation" field.
  • decisionReason - The main reason behind the Forter decision.
  • merchantPolicyId - UID of the custom policy created in Forter's Policies tool that resulted in this decision.
  • accountId - When applicable, the customer's account UID in merchant's site.
  • correlationId - A forter unique identifier that should be sent to Forter as part of the AdvancedAuthenticationMethod object to correlate the MFA recommendation given in this response with the relevant additional authentication attempt result.

Note

Read more at the Forter API Reference

Examples

Integrating one of the connector actions inside a flow can be used in various scenarios. Here is an example of a flow that utilizes the result as follows:

forter flow example

forter flow condition

The flow checks whether the user came back with an approved recommendation, if so it asks the user for a second-factor authentication.

Was this helpful?

Previous

AbuseIPDB

Next

Fingerprint

On this page

Forter ConnectorSetting Up The Forter ConnectorNavigate to ConnectorConnector SetupTest & SaveImplementing the Forter ConnectorSelect or Create a FlowIntegrationLog InSign UpResponseExamples