Java Policy Agents 2023.3

Agent Filter Mode Map

A map of web application name to agent filter mode:

  • Key: Web application name.

  • Value: Agent filter mode.

The following example configures one filter mode for the BankApp web application. All other web applications use the default filter mode, URL_POLICY: org.forgerock.agents.filter.mode.map[BankApp]=SSO_ONLY

The following example configures the NONE filter mode for all applications in the web container: org.forgerock.agents.filter.mode.map[ALL]=NONE

The mode J2EE_POLICY does not apply to Java Agents 5.10. However, for backward-compatibility, it is displayed in the AM agent profile page.

Property name

org.forgerock.agents.filter.mode.map

Aliases

com.sun.identity.agents.config.filter.mode
  Introduced in Java Agent 5.0
  Recognized from AM 6

org.forgerock.agents.filter.mode.map
  Introduced in Java Agent 5.6.2.1

Supported settings

NONE

The agent performs no authentication check, and grants access to any resource. When the value is NONE and logging is enabled, for auditing purposes, the agent filter logs all incoming requests.

SSO_ONLY

Any user having either a valid SSO token or JWT can access any resource.

URL_POLICY

The normal operating mode of the agent, in which resource access is granted by AM policy evaluation.

Default

URL_POLICY

Bootstrap property

Yes

Required property

No

Restart required

No

Local configuration file

AgentBootstrap.properties

AM console

Tab: Global

Title: Agent Filter Mode Map

Legacy title: Agent Filter Mode

Copyright © 2010-2023 ForgeRock, all rights reserved.