On the Authentication Application screen, create a new or manage an existing authentication application.

  1. Provide information for each field.
    For more information, refer to the following table.
    Field Description
    Name The name of the authentication application.
    Description An optional description of the authentication application.
    URL The URL of the authentication application.
    Additional Allowed Origins Enter any number of trusted origins to enable cross-origin resource sharing (CORS) support for the authentication API endpoint.
    Once configured, client-side web applications from the trusted origins are allowed to make requests to the PingFederate authentication API endpoint. For more information about CORS, please refer to W3C's recommendation on Cross-Origin Resource Sharing (www.w3.org/TR/cors).
    Sample entry Expected behavior
    https://www.example.com CORS requests originating from https://www.example.com are allowed.
    https://www.example.com:8080 CORS requests originating from https://www.example.com:8080 are allowed.
    https://www.example.com:* CORS requests originating from https://www.example.com:<any port> are allowed.

    Given this sample entry, a port number is required in the Origin request header.


    While using the wildcard character provides the convenience of allowing multiple origins with one entry, consider adding individual origins to limit CORS requests to a list of trusted hosts.

    This field has no default entry. Multiple entries are allowed.

  2. Click Save to keep your configuration or click Cancel to discard any changes made.