Gateway Credentials
The gateway instance running within your infrastructure authenticates with PingOne through a gateway credential. The examples that follow show common actions to create and manage gateway credentials.
You need the Environment Admin role to perform operations on gateway entities.
Gateway credentials data model
| Property | Type | Required? | Mutable? | Description |
|---|---|---|---|---|
|
Date |
N/A |
Read-only |
The date the credential was created in Coordinated Universal Time (UTC). |
|
String |
N/A |
Read-only |
The auto-generated ID for this credential. This is the JWT’s |
|
Date |
N/A |
Read-only |
The date the credential was last used in UTC. |
|
String |
N/A |
Read-only |
The signed JWT for the gateway credential. This property is present only when the gateway credential is created. |
Gateway credentials token claims
The gateway credential includes the following claims:
| Claim | Type | Description |
|---|---|---|
|
String |
The names of resources that this token is intended for (for example, https://api.pingone.com). |
|
String |
The authorization server URL (for example, https://auth.pingone.com). |
|
String |
The admin console URL (for example, https://console.pingone.com). |
|
String |
The environment ID of the authenticated user or application. |
|
String |
The name of the PingOne environment. |
|
String |
The PingOne gateway ID. |
|
String |
The name of the PingOne gateway. |
|
String |
The PingOne gateway type. Options are |
|
Integer |
The timestamp, measured in the number of seconds since January 1, 1970, UTC, indicating when this token was originally issued, as defined in JWT RFC7519. |
|
String |
The per-environment issue URI: |
|
String |
The UUID for the token. |
|
String |
The PingOne organization ID of the authenticated user or application. |
|
String |
The name of the PingOne organization. |
|
String |
The target region’s name. |
|
String |
The name of the PingOne target cluster environment. |
|
String |
The target’s region. Options are |