PingFederate provides two built-in, SOAP-accessible web services related to browser-based single sign-on (SSO).
These services can be used by client applications to manage partner connections and support integration of web applications, respectively.
- Connection Management Service
-
Note:
As of PingFederate 10.2, the Connection Management Service has been deprecated and will be removed in a future release.
- SSO Directory Service
-
Note:
As of PingFederate 10.2, the SSO Directory Service has been deprecated and will be removed in a future release.
Additionally, PingFederate provides REST-based web services and APIs for a variety of administrative and runtime tasks.
- OAuth Client Management Service
- A runtime API to manage OAuth client applications.
- OAuth Access Grant Management Service
- A runtime API to retrieve and revoke persistent grants. This API is intended for administrators to manage grants per client or per user.
- OAuth Persistence Grant Management API
- Another runtime API to retrieve and revoke persistent grants. This API is intended for the use case where clients can assume the responsibility of grant management, provided that the users authorize the clients to do so.
- Session Revocation API
- A runtime API allowing clients supporting the OpenID Connect protocol to query revocation status of their sessions and add user sessions to the revocation list.
- Administrative API
- An administrative API to manage various PingFederate settings.