The POST /environments/{environmentId}/applications operation adds a new PingFederate worker application resource to the specified environment. PingOne MFA can integrate with third party identity providers, including PingFederate. The PingFederate connection in PingOne MFA is actually a worker application connection that specifies the tags property with the property value set to PING_FED_CONNECTION_INTEGRATION.

The request body can specify a value of “true” for the enabled attribute. If a value is not specified for the enabled attribute, it is set to false by default.

Base application data model (worker application)

Property Required? Type
enabled Y Boolean
name Y String
description N String
type Y One of: NATIVE_APP, WEB_APP, SINGLE_PAGE_APP, SERVICE, WORKER, CUSTOM_APP
protocol Y One of: OPENID_CONNECT, SAML
homePageUrl N URL
loginPageUrl N URL
icon
id N UUID
href N URL
homePageUrl N URL
tags N Array

Additional OIDC settings

Property Required? Type
grantTypes Y One or more of: AUTHORIZATION_CODE, IMPLICIT, REFRESH_TOKEN, CLIENT_CREDENTIALS
postLogoutRedirectUris Y One or more URLs
redirectUris Y One or more of: TOKEN, ID_TOKEN, CODE
tokenEndpointAuthMethod Y One of: NONE, CLIENT_SECRET_BASIC, CLIENT_SECRET_POST
pkceEnforcement N One of: OPTIONAL, REQUIRED, S256_REQUIRED; default OPTIONAL
refreshTokenDuration N Integer (60 - {maxInt})
refreshTokenRollingDuration N Integer (60 - {maxInt})