---
title: XSS Redirect URI Map
description: A map of web application name to URI. When a cross-site scripting attack is detected, the agent redirects to the URI specified in the map. The URI is expected to be a page (HTML, or otherwise) indicating that such an attack has been detected.
component: java-agents
version: 2025.11
page_id: java-agents:properties-reference:org.forgerock.agents.xss.redirect.uri.map
canonical_url: https://docs.pingidentity.com/java-agents/2025.11/properties-reference/org.forgerock.agents.xss.redirect.uri.map.html
---

# XSS Redirect URI Map

A map of web application name to URI. When a cross-site scripting attack is detected, the agent redirects to the URI specified in the map. The URI is expected to be a page (HTML, or otherwise) indicating that such an attack has been detected.

For example, to redirect clients of MyApp to `/myapp/error.html`, enter MyApp as the map key and `/myapp/error.html` as the map value.

|                          |                                                                                                                                                                                                                                   |
| ------------------------ | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| Property name            | `org.forgerock.agents.xss.redirect.uri.map`                                                                                                                                                                                       |
| Aliases                  | `com.sun.identity.agents.config.xss.redirect.uri`   Introduced in Java Agent 5.0   [Recognized](preface.html#how_am_manages_multiple_aliases) from AM 6`org.forgerock.agents.xss.redirect.uri.map`   Introduced in Java Agent 5.7 |
| Function                 | Cross-site scripting                                                                                                                                                                                                              |
| Type                     | Map- Keys: web application

- Values: cross site scripting URI                                                                                                                                                                    |
| Default                  | `/agentapp/XSSCodeDetected.html`                                                                                                                                                                                                  |
| Bootstrap property       | No                                                                                                                                                                                                                                |
| Required property        | No                                                                                                                                                                                                                                |
| Restart required         | No                                                                                                                                                                                                                                |
| Local configuration file | `AgentConfig.properties`                                                                                                                                                                                                          |
| AM console               | Tab: `Advanced`Title: `XSS Redirect URI Map`Legacy title: `XSS detection redirect URI`                                                                                                                                            |