Editing a resource
Use the Resources page to modify existing resources in PingOne.
Steps
-
Go to Applications → Resources and browse or search for the resource that you want to edit.
The results list updates as you enter the search query. The current resources are shown in the list.
-
Click a resource entry to open the details panel for the resource.
-
On the Overview tab, click the Pencil icon and enter or edit the following:
Field Description Resource Name
A unique identifier for the resource.
Audience (optional)
The intended audience for the resource. If you don’t provide a value, PingOne defaults to the resource name.
Description (optional)
A brief description of the resource.
Access token time to live
The maximum time, in seconds, that the access token will be valid for use in the application.
Token introspection endpoint authentication method
Specifies how to authenticate using the client credentials for the application to which the token was issued. You can select from:
-
None
-
Client secret basic
-
Client secret post
-
Client secret JWT
-
Private key JWT
For
Private key JWT
, select JWKS URL or JWKS. Provide either the URL where PingOne can retrieve the JSON Web Key Set (JWKS) or the web key set itself.
-
-
On the Attributes tab, map resource attributes to user attributes in PingOne. Enter a resource attribute and then select the corresponding PingOne attribute from the list.
Example:
For example, you could map the
OIDC family_name
attribute to the PingOneFamily Name
attribute.-
(Optional) To add more attributes after you have created the custom resource, click Add. Enter an OIDC attribute and the desired PingOne mapping. Learn more in Mapping attributes. Click the Gear icon to use advanced expressions. Learn more in Using the expression builder.
-
To delete an attribute, click the Delete icon for the appropriate attribute.
Resources can use JSON attributes in their attribute mappings. You can use these attributes to pass complex information to applications through an access token. Learn more in Adding user attributes.
-
-
On the Scopes tab, locate the scope you want to edit, and then click the Pencil icon. Enter or edit the Scope name and Description.
-
(Optional) To add a scope, click Add scope, and enter the Scope name and Description and any mapped attributes to which you want the scope to have access.
-
-
(Optional) On the Permissions tab, click the Include user permissions in Access Token toggle to include application permissions in access tokens created for this resource.
To enable the Permissions tab, add PingOne Authorize to your environment.
Permissions for the authenticated user will be included in the
p1.permissions
claim in the access token. Learn more in Application permissions. -
(Optional) To add an application resource and permissions, click Add Permissions.
Learn more in Adding application permissions.
-
To delete an application resource, click the Delete icon next to the application resource.
-
To edit an application resource, click the Pencil icon next to the application resource.
Choose from:
-
Edit the application resource Name and Description.
-
To add a permission, click Add. Enter an Action and Description for the permission.
-
Edit the Action and Description for existing permissions.
-
To delete a permission, click the Delete icon next to the permission.
-
-
Click Save.