Developer Guides

OpenID Connect 1.0

This guide provides a developer overview of the OpenID Connect protocol and includes instructions that application developers can use to implement OpenID Connect authentication for their applications with PingFederate.

OAuth 2.0

As a developer, if you're implementing OAuth 2.0, what considerations and sample code do you need for each use case? This guide goes into depth on both application and API developer issues when modifying your apps and APIs to support OAuth 2.0.

Native Application SSO

This guide provides a developer overview of how to enable a native mobile application for both federated authentication and single sign-on. This describes the advancements in iOS9 and Google Chrome that make Mobile SSO easy.

SCIM 1.1

The SCIM protocol was created to simplify user management in the cloud. This in-depth guide for the SCIM 1.1 protocol includes information about the SCIM components, schema and operations and is targeted at a developer audience.


JSON Web Tokens (JWTs) and the JOSE collection of standards (JWS, JWE, JWA and JWK) provide a simple and compact model for representing claims in a token and the signing and encryption of these tokens.

Agentless Integration Kit

The PingFederate Agentless Integration Kit enables an enterprise to integrate both applications and custom authentication actions into the PingFederate product. Enabling legacy applications for Federated SSO in any language.

Application Integration Guide

You need to enable your applications for single sign-on (SSO), but where do you start? This guide walks through the considerations for application developers to enable their applications for SSO.

Open Standard Protocols

Open standards ensure interoperability and enforce secure practices. Explore how open standard federation protocols work with this reference. White papers, videos and tutorials are provided.

Federated SSO Primer

Let's get back to basics. What exactly does single sign-on (SSO) mean and how is federated SSO different? Learn the considerations that all developers should understand before planning SSO for their applications.

OGNL, Groovy, and Velocity

OGNL, Groovy, and Velocity are three script frameworks Ping products use to enhance the core capabilities of the products:

  • OGNL - Part of the Apache commons framework. You can use OGNL in PingFederate to create custom attribute mappings and issuance criteria.
  • Groovy - Open source scripting language based on the Java framework. You can leverage Groovy in PingAccess to build complex authorization policies.
  • Velocity - An Apache foundation project.  You can use Velocity in both PingAccess and PingFederate to customize user-facing HTML templates (i.e. login forms, error pages and user facing screens).


OGNL Primer Blog Series

Learn the ins and outs of OGNL through John DaSilva's blog series that focuses on the technology.

OGNL Expressions

PingFederate documentation details where you can leverage OGNL within the product.

Velocity & PingFederate

Learn how to use Velocity to customize user-facing PingFederate templates.

Velocity &

PingAccess documentation section explaining how to customize user-facing templates.

Groovy Scripts Documentation

PingAccess documentation section explaining how to use Groovy in your authorization policies.