Connections to external resources must use open standards protocols.


You can map PingOne user attributes to attributes in your resource. For more information, see Mapping attributes.


Resources have scopes, and applications can request an access token that is associated with specific scopes when the token is granted. The endpoint enforces access through the encoded representation of the scopes in the access token. The endpoint decodes the token to determine the permissions allowed for the application.

For information about predefined PingOne resources, see Resource scopes.


Resources can have application permissions that control the kinds of actions users can perform on protected endpoints. For more information, see Application permissions.