---
title: FapiResourceUnprotectedFilterChain
description: Configure FapiResourceUnprotectedFilterChain to validate unprotected resource server requests against FAPI 1.0 Baseline and Advanced specifications
component: pinggateway
version: 2026
page_id: pinggateway:reference:FapiResourceUnprotectedFilterChain
canonical_url: https://docs.pingidentity.com/pinggateway/2026/reference/FapiResourceUnprotectedFilterChain.html
revdate: 2025-06-29T17:01:00Z
section_ids:
  usage: Usage
  properties: Properties
  more_information: More information
---

# FapiResourceUnprotectedFilterChain

A filter chain to validate unprotected requests to resource servers and make sure they comply with the following FAPI specifications:

* [Financial-grade API Security Profile 1.0 - Part 1: Baseline](https://openid.net/specs/openid-financial-api-part-1-1_0.html#authorization-server)

* [Financial-grade API Security Profile 1.0 - Part 2: Advanced](https://openid.net/specs/openid-financial-api-part-2-1_0.html)

|   |                                                                                                  |
| - | ------------------------------------------------------------------------------------------------ |
|   | Use this filter for *unprotected endpoints only*. It doesn't do certificate or token validation. |

## Usage

```none
{
    "name": string,
    "type": "FapiResourceUnprotectedFilterChain",
    "config": {
        "auditService": AuditService reference
    }
}
```

## Properties

* `"auditService"`: *AuditService [reference](preface.html#definition-reference), optional*

  The [AuditService](AuditService.html) to record audit events. Provide either the name of an AuditService object defined in the heap or an inline AuditService configuration object.

  Default: No audit service.

## More information

[org.forgerock.openig.fapi.resource.FapiResourceUnprotectedFilterChainHeaplet](../_attachments/apidocs/org/forgerock/openig/fapi/resource/FapiResourceUnprotectedFilterChainHeaplet.html)