PingGateway 2024.9

PingOneProtectThreatLevelRoutingHandler

Uses a PingOneProtectEvaluationContext representing a risk evaluation to route the inbound request according to the risk level.

The PingOneProtectThreatLevelRoutingHandler is available in Technology preview. It isn’t yet supported, may be functionally incomplete, and is subject to change without notice.

You use a PingOneProtectEvaluationFilter to make a risk assessment request to PingOne Protect. The filter records the evaluation in a PingOneProtectEvaluationContext object. The PingOneProtectThreatLevelRoutingHandler acts on the risk level set in the context.

After completing additional actions to verify the identity of a user following a risk evaluation, record the outcome using a PingOneProtectFeedbackSuccessFilter or a PingOneProtectFeedbackFailureFilter.

Usage

{
  "name": string,
  "type": "PingOneProtectThreatLevelRoutingHandler",
    "config": {
      "levels": {
        "low": Handler reference,
        "medium": Handler reference,
        "high": Handler reference
      }
  }
}

Configuration

"levels": array of objects, required

Object mapping a risk level to a handler.

"low": Handler reference, required

The handler responsible for low-risk requests.

"medium": Handler reference, required

The handler responsible for medium-risk requests.

"high": Handler reference, required

The handler responsible for high-risk requests.

Example

The following example sends low-risk requests straight through, medium-risk requests to a handler for additional authentication, for example, and high-risk requests to a handler that denies access and takes additional action:

{
    "name": "PingOneProtectThreatLevelRoutingHandler-1",
    "type": "PingOneProtectThreatLevelRoutingHandler",
    "config": {
        "levels": {
            "low": "passthroughHandler",
            "medium": "mediumRiskHandler",
            "high": "highRiskHandler"
        }
    }
}
Copyright © 2010-2024 ForgeRock, all rights reserved.