PingGateway 2024.6

PingOneProtectThreatLevelRoutingHandler

Uses a PingOneProtectEvaluationContext representing a risk evaluation to route the inbound request according to the risk level.

The PingOneProtectThreatLevelRoutingHandler is available in Technology preview. It isn’t yet supported, may be functionally incomplete, and is subject to change without notice.

You use a PingOneProtectEvaluationFilter to make a risk assessment request to PingOne Protect. The filter records the evaluation in a PingOneProtectEvaluationContext object. The PingOneProtectThreatLevelRoutingHandler acts on the risk level set in the context.

If the risk level is not recognized, PingGateway routes the request to the configured "fallbackHandler".

After completing additional actions to verify the identity of a user following a risk evaluation, record the outcome using a PingOneProtectFeedbackFilter.

Usage

{
  "name": string,
  "type": "PingOneProtectThreatLevelRoutingHandler",
    "config": {
      "levels": [{
        "level": configuration expression<string>,
        "handler": Handler reference
      }]
      "fallbackHandler": Handler reference
  }
}

Configuration

"levels": array of objects, required

One or more objects, each mapping a risk level to a handler.

"level": configuration expression<string>, required

The risk level; one of:

  • LOW

  • MEDIUM

  • HIGH

"handler": Handler reference, required

The handler responsible for requests with the corresponding risk level.

"fallbackHandler": Handler reference, optional

The handler to use when the risk level doesn’t match any of the configured "level" settings.

Default: Return an HTTP 403 Forbidden response.

Example

The following example sends low-risk requests straight through, medium-risk requests to another handler for additional processing, and high-risk requests to another handler to deny access and take additional action:

{
    "name": "PingOneProtectThreatLevelRoutingHandler-1",
    "type": "PingOneProtectThreatLevelRoutingHandler",
    "config": {
        "levels": [{
            "level": "LOW",
            "handler": "passthroughHandler"
        }, {
            "level": "MEDIUM",
            "handler": "mediumRiskHandler"
        }, {
            "level": "HIGH",
            "handler": "highRiskHandler"
        }],
        "fallbackHandler": "fallbackHandler"
    }
}

More information

org.forgerock.openig.ping.protect.PingOneProtectThreatLevelRoutingHandler

Copyright © 2010-2024 ForgeRock, all rights reserved.