PingFederate 12.2.7 (February 2026)

Resolved issues

Kerberos Adapter redirect URL

Fixed PF-38328

We’ve fixed a defect where the Kerberos Adapter failed to authenticate when a context path is configured.

JWT Administrative API authentication misconfiguration

Fixed PF-38336

We’ve fixed a defect that caused PingFederate to crash or shut down when attempting to access the Administrative API with a misconfigured JSON Web Token (JWT) authentication setup.

Administrative API authentication fix

Fixed PF-38393

We’ve fixed a defect that allowed Basic Authentication to access the Administrative API, even when it was disabled in the pf.admin.api.authentication property.

`pi.flow` `response_mode` fix

Fixed PF-38417

We’ve fixed a defect where setting response_mode to pi.flow in Pushed Authorization Requests (PAR) or standard request objects resulted in an INVALID_REQUEST error.

Authentication policy error

Fixed PF-38623

We’ve fixed a defect that caused an error when authentication policies with a Requested AuthN Context Authentication had Add or Update AuthN Context Attribute enabled.

PingFederate Server