PingFederate 11.0.4 (August 2022)

New features and improvements in PingFederate 11.0.4.

MasterKeyEncryptor and cluster replication

Fixed PF-31795

When PingFederate uses a custom MasterKeyEncryptor that relies on an SSL call to an external service, cluster replication no longer causes cascading failures because PingFederate cannot open Java key store files.

Rule matching for fragment nodes and NullPointerException

Fixed PF-31929

When using rule matching for fragment nodes, PingFederate no longer raises a NullPointerException (NPE) if a fragment fails.

Zero byte archives

Fixed PF-31966

Resolved an issue that caused PingFederate to generate a zero byte archive when it couldn’t read a file in the <pf_install>/pingfederate/server/default/data directory.

JWT access token lifetimes

Fixed PF-31989

When using centralized and dynamically rotating keys for OAuth and OpenID Connect, PingFederate now prevents you from setting the JWT access token lifetime to be longer than the dynamic-rotation-period-in-days specified in <pf_install>/pingfederate/server/default/data/config-store/jwks-endpoint-configuration.xml.

PingFederate Server

PingFederate 11.0.4 (August 2022)

MasterKeyEncryptor and cluster replication

Rule matching for fragment nodes and NullPointerException

Zero byte archives

JWT access token lifetimes