Java Policy Agents 2023.3

Enable HTTP 302 Redirects

Controls how the agent handles redirects, as follows:

  • true: HTTP 302 Redirects are enabled. When an unauthenticated request is made, and not-enforced rules do not apply, the agent returns an HTTP 302 code to redirect the user to an authentication endpoint.

  • false: HTTP 302 Redirects are disabled. When an unauthenticated request is made, the agent returns a block of configurable JSON that can be intercepted.

The returned HTTP code, content type, and data is configured by the following properties

Lists of URLs in a not-enforced rule style, for which the data is produced are configured by the following properties

Use this option when it is difficult to handle 302, for example, when the agent is accessed by a JavaScript application, or by something other than a browser.

Property name



  Introduced in Java Agent 5.8.0
  Recognized from AM 7.1


Boolean: true returns true; all other strings return false.



Bootstrap property


Required property


Restart required


Local configuration file

AM console

Tab: Miscellaneous (from AM 7.1)

Title: Enable HTTP 302 Redirects

Legacy title: HTTP 302 Redirects Enabled

Copyright © 2010-2023 ForgeRock, all rights reserved.