Resolved issues

Ticket ID Description


When PingFederate uses a custom MasterKeyEncryptor that relies on an SSL call to an external service, cluster replication no longer causes cascading failures because PingFederate cannot open Java key store files.


When using rule matching for fragment nodes, PingFederate no longer raises a NullPointerException (NPE) if a fragment fails.


Resolved an issue that caused PingFederate to generate a zero byte archive when it couldn't read a file in the <pf_install>/pingfederate/server/default/data directory.


When using centralized and dynamically rotating keys for OAuth and OpenID Connect, PingFederate now prevents you from setting the JWT access token lifetime to be longer than the dynamic-rotation-period-in-days specified in <pf_install>/pingfederate/server/default/data/config-store/jwks-endpoint-configuration.xml.