PingGateway 2024.6


Provides a feedback mechanism for actions completed following risk evaluation with PingOne Protect.

At present, PingGateway doesn’t send the result to PingOne Protect.
The PingOneProtectFeedbackFilter is available in Technology preview. It isn’t yet supported, may be functionally incomplete, and is subject to change without notice.


  "name": string,
  "type": "PingOneProtectFeedbackFilter",
    "config": {
      "completionStatus": configuration expression<enumeration>,
      "postSuccessSessionStateRiskLevel": configuration expression<string>


"completionStatus": configuration expression<enumeration>, optional

A string indicating the result of actions completed as a result of a previous risk evaluation; one of:


Failed to verify the user’s identity.


Successfully verified the user’s identity.

Default: FAILED

"postSuccessSessionStateRiskLevel": configuration expression<string>, optional

A string to override the risk level managed in the session state based on the outcome of post-evaluation actions.

PingGateway uses this during the "lowRiskEvaluationThrottlePeriod" defined in the PingOneProtectEvaluationFilter for the route to decide whether to make a risk evaluation request to PingOne Protect for the next incoming request.

One of:

  • LOW


  • HIGH

Default: do not override the risk level in the session state.

Copyright © 2010-2024 ForgeRock, all rights reserved.