PingFederate 11.2.10 (July 2024)

OAuth client only validates one access token manager when `aud` parameter included

Fixed PF-35737

Fixed a defect that caused PingFederate to validate only the first OAuth client access token manager it found when Validate Against All Eligible Access Token Managers was checked, and the aud parameter was included in the request.

Wrong content-type for autopost template form

Fixed PF-35784

Fixed a defect that caused PingFederate to send the wrong content-type value for form.autopost.template.html requests, which caused the page to render as JSON rather than the formatted form.

PingFederate Server

PingFederate 11.2.10 (July 2024)

OAuth client only validates one access token manager when aud parameter included

Wrong content-type for autopost template form

OAuth client only validates one access token manager when `aud` parameter included