Removed

2025.3

This release no longer supports AM 7.1 and earlier (deprecated in 2023.2).

PingGateway features
Feature or property	Setting	Replacement setting	Deprecated in
CapturedUserPasswordFilter	`keyType`	None; the filter expects a password encrypted with AES	7.2
ClientCredentialsOAuth2ClientFilter	`clientId`, `clientSecretId`, `handler`	`endpointHandler`	7.2
ClientHandler	`hostnameVerifier`	Set the `hostnameVerifier` in the ClientTlsOptions of the `tls` setting.	7.2
ClientHandler	`proxy` and `systemProxy`	`proxyOptions`	7.2
ClientRegistration	`clientSecretUsage` `jwtExpirationTimeout` `privateKeyJwtSecretId` `tokenEndpointAuthMethod` `tokenEndpointAuthSigningAlg`	`authenticatedRegistrationHandler`	7.2
CorsFilter	`origins`	`acceptedOrigins`	7.1
CsvAuditEventHandler	`security`	None	-
ElasticsearchAuditEventHandler	Whole object	None	7.1
Functions	`matches()` and `matchingGroups()`	None	7.1
IdentityAssertionHandlerTechPreview	Whole object	IdentityAssertionHandler	-
OAuth2ClientFilter	Whole object	AuthorizationCodeOAuth2ClientFilter	7.2
ReverseProxyHandler	`hostnameVerifier`	Set the `hostnameVerifier` in the ClientTlsOptions of the `tls` setting.	7.2
ReverseProxyHandler	`proxy` and `systemProxy`	`proxyOptions`	7.2
ScriptableIdentityAssertionPluginTechPreview	Whole object	ScriptableIdentityAssertionPlugin	-
SplunkAuditEventHandler	Whole object	None	7.1

The following filters and handlers are no longer instantiable in PingGateway scripts. If you can’t configure them the way you want to, write your own similar ScriptableFilter or ScriptableHandler:

AssignmentFilter
EntityExtractFilter
HeaderFilter
LocationHeaderFilter
StaticRequestFilter
SwitchFilter
DispatchHandler
SequenceHandler
StaticResponseHandler

2024.11

No removals.

2024.9

No removals.

2024.6

No removals

2024.3

Feature or property Setting Replacement setting Deprecated in

Feature or property	Setting	Replacement setting	Deprecated in
IG product	Creation of a .war file	.zip file	6
SingleSignOnFilter	`logoutEndpoint`	`logoutExpression`	7
Java support	Java 11	Java 17	2023.11
JwtSession	`encryptionSecretId`, `signatureSecretId`,`cookieName`, `cookieDomain`,`password`, `alias`, `keystore`, `sharedSecret`	`authenticatedEncryptionSecretId`, `encryptionMethod`, `cookie`	7, 6.5
OpenAmAccessTokenResolver	Whole object	None	7
JwtBuilderFilter	Use of unsigned or unencrypted JWTs	Use of signed or encrypted JWTs	7
GrantSwapJwtAssertionOAuth2ClientFilter	Use of unsigned or unencrypted JWTs	Use of signed or encrypted JWTs	Not deprecated
CryptoHeaderFilter	Whole object	JwtBuilderFilter	7
Ldap	`LdapClient` class and the `ldap` script binding	None	7.1
KeyManager	`password`	`passwordSecretId`	6.5
CapturedUserPasswordFilter	`key`	`keySecretId`	7
PasswordReplayFilter	`headerDecryption`	PasswordReplayFilter’s `credentials` property configured with a CapturedUserPasswordFilter	7
KeyStore	`password`	`passwordSecretId`	7
DesKeyGenHandler	Whole object	None	7
SqlAttributesFilter	`dataSource` as a JNDI lookup name	`dataSource` as a `JdbcDataSource` configuration object	7
AmService	`agent` subproperty `password`	`agent` subproperty `passwordSecretId`	6.5
TlsOptions	Whole object	ClientTlsOptions	7
ClientHandler and ReverseProxyHandler	`proxy` subproperty `password`	`proxy` subproperty `passwordSecretId`	7
JwtBuilderFilter	`signature` subproperties: `keystore` `alias` `password`	`signature` subproperty `secretId`	6.5
AuditService	`event-handlers`	`eventHandlers`	7
ClientRegistration	`keystore` `privateKeyJwtAlias` `privateKeyJwtPassword`	`privateKeyJwtSecretId`	7
`clientSecret`	`clientSecretId`	7
The name of the ClientRegistration heaplet to identify a client registration when a user initiates a login	The `clientId` property of ClientRegistration	7
Route	`secrets`	A `secretsProvider` configuration in each affected object	7

IG product

Creation of a .war file

.zip file

6

SingleSignOnFilter

logoutEndpoint

logoutExpression

7

Java support

Java 11

Java 17

2023.11

JwtSession

encryptionSecretId, signatureSecretId,cookieName, cookieDomain,password, alias, keystore, sharedSecret

authenticatedEncryptionSecretId, encryptionMethod, cookie

7, 6.5

OpenAmAccessTokenResolver

Whole object

None

7

JwtBuilderFilter

Use of unsigned or unencrypted JWTs

Use of signed or encrypted JWTs

7

GrantSwapJwtAssertionOAuth2ClientFilter

Use of unsigned or unencrypted JWTs

Use of signed or encrypted JWTs

Not deprecated

CryptoHeaderFilter

Whole object

JwtBuilderFilter

7

Ldap

LdapClient class and the ldap script binding

None

7.1

KeyManager

password

passwordSecretId

6.5

CapturedUserPasswordFilter

key

keySecretId

7

PasswordReplayFilter

headerDecryption

PasswordReplayFilter’s credentials property configured with a CapturedUserPasswordFilter

7

KeyStore

password

passwordSecretId

7

DesKeyGenHandler

Whole object

None

7

SqlAttributesFilter

dataSource as a JNDI lookup name

dataSource as a JdbcDataSource configuration object

7

AmService

agent subproperty password

agent subproperty passwordSecretId

6.5

TlsOptions

Whole object

ClientTlsOptions

7

ClientHandler and ReverseProxyHandler

proxy subproperty password

proxy subproperty passwordSecretId

7

JwtBuilderFilter

signature subproperties:

keystore
alias
password

signature subproperty secretId

6.5

AuditService

event-handlers

eventHandlers

7

ClientRegistration

keystore
privateKeyJwtAlias
privateKeyJwtPassword

privateKeyJwtSecretId

7

clientSecret

clientSecretId

7

The name of the ClientRegistration heaplet to identify a client registration when a user initiates a login

The clientId property of ClientRegistration

7

Route

secrets

A secretsProvider configuration in each affected object

7

2023.11

No removals.

2023.9

No removals.

2023.6

No removals.

2023.4

No removals.

2023.2

Feature or property Setting Replacement setting Deprecated in

Feature or property	Setting	Replacement setting	Deprecated in
IG product	Delivery of a .war file	.zip file	6
Environment variable and system property	`OPENIG_BASE` `openig.base`	`IG_INSTANCE_DIR` `ig.instance.dir`	6
PolicyEnforcementFilter	`executor`	`cache` subproperty `executor`	6
ClientHandler and ReverseProxyHandler	`keyManager` `sslCipherSuites` `sslContextAlgorithm` `sslEnabledProtocols` `trustManager`	`tls` property to define a ClientTlsOptions object	6.5
UserProfileFilter	`ssoToken`	`username`	6.5
`profileAttributes`	`userProfileService` subproperty `profileAttributes`	6.5
`amService`	`userProfileService` subproperty `amService`	6.5
StatelessAccessTokenResolver	`signatureSecretId`	`verificationSecretId`	6.5.1
`encryptionSecretId`	`decryptionSecretId`	6.5.1

IG product

Delivery of a .war file

.zip file

6

Environment variable and system property

OPENIG_BASE
openig.base

IG_INSTANCE_DIR
ig.instance.dir

6

PolicyEnforcementFilter

executor

cache subproperty executor

6

ClientHandler and ReverseProxyHandler

keyManager
sslCipherSuites
sslContextAlgorithm
sslEnabledProtocols
trustManager

tls property to define a ClientTlsOptions object

6.5

UserProfileFilter

ssoToken

username

6.5

profileAttributes

userProfileService subproperty profileAttributes

6.5

amService

userProfileService subproperty amService

6.5

StatelessAccessTokenResolver

signatureSecretId

verificationSecretId

6.5.1

encryptionSecretId

decryptionSecretId

6.5.1

7.2

Feature or property Setting Replacement setting Deprecated in

Feature or property	Setting	Replacement setting	Deprecated in
StaticResponseHandler	`version`	Not replaced	Not deprecated

StaticResponseHandler

version

Not replaced

Not deprecated