pingone-risk.yml

openapi: 3.0.0
info:
  title: PingOne Platform API - PingOne Risk
  description: The PingOne Platform API covering the PingOne Risk service
  version: '2023-06-29'
externalDocs:
  url: https://apidocs.pingidentity.com/pingone/platform/v1/api/#pingone-risk
  description: PingOne Platform API Reference - PingOne Risk APIs
servers:
  - url: '{protocol}://{baseDomain}.{suffix}/v1'
    description: PingOne Platform API Endpoint
    variables:
      suffix:
        enum:
          - 'asia'
          - 'ca'
          - 'com'
          - 'com.au'
          - 'eu'
        default: 'com'
      baseDomain:
        default: 'api.pingone'
      protocol:
        default: 'https'
  - url: '{protocol}://{baseHostname}/v1'
    description: PingOne Platform API Endpoint
    variables:
      baseHostname:
        default: 'api.pingone.com'
      protocol:
        default: 'https'
components:
  securitySchemes:
    bearer:
      type: http
      scheme: bearer
      bearerFormat: JWT
      description: OAuth bearer token (see documentation)
  schemas:
    LinksHATEOAS:
      type: object
      readOnly: true
      additionalProperties:
        type: object
        properties:
          href:
            type: string
            format: uri
            description: The HREF of the link.
        required:
          - href
    EntityArray:
      type: object
      properties:
        '_links':
          $ref: '#/components/schemas/LinksHATEOAS'
        '_embedded':
          type: object
          properties:
            riskPolicySets:
              type: array
              items:
                $ref: '#/components/schemas/RiskPolicySet'
            riskPredictors:
              type: array
              items:
                $ref: '#/components/schemas/RiskPredictor'
        count:
          type: number
        size:
          type: number
    EnumCompletionStatus:
      type: string
      enum: [FAILED, IN_PROGRESS, SUCCESS]
      description: A string that specifies the state of the transaction. Options are `FAILED`, `IN_PROGRESS`, and `SUCCESS`. If a value is not provided, the value defaults to `IN_PROGRESS`. The value of this property can be changed only if its current state is `IN_PROGRESS`.
    EnumDistanceUnit:
      type: string
      enum: [kilometers, miles]
      description: A string that specifies the unit of distance. Options are `kilometers`, `miles`.
    EnumEventSharingType:
      type: string
      enum: [UNSPECIFIED, SHARED, PRIVATE]
      description: A string that specifies the device sharing type. Options are `UNSPECIFIED`, `SHARED`, and `PRIVATE`.
    EnumFlowType:
      type: string
      enum: [AUTHENTICATION, REGISTRATION, ACCESS, AUTHORIZATION, TRANSACTION]
      default: AUTHENTICATION
      description: |
        	The type of flow for which the risk evaluation is being carried out. Can take any of the following values:
          `REGISTRATION` - initial registration of an account
          `AUTHENTICATION` - standard authentication for login or actions such as password change
          `ACCESS` - verification of whether user can access the relevant application, using tools such as PingAccess
          `AUTHORIZATION` - verification of whether user is authorized to perform a specific action such as a profile change, using tools such as PingOne Authorize
          `TRANSACTION` - authentication carried out in the context of a purchase or other monetary transaction
          The default value is `AUTHENTICATION`.
    EnumRiskPolicyConditionType:
      type: string
      description: |
        Indicates the type of policy you are defining. Can be one of the following values: `AGGREGATED_SCORES`, `AGGREGATED_WEIGHTS`, `VALUE_COMPARISON`, and `IP_RANGE` (for override policies or custom predictors).
      enum: [AGGREGATED_WEIGHTS, AGGREGATED_SCORES, VALUE_COMPARISON, IP_RANGE]
    EnumRiskPolicyResultLevel:
      type: string
      enum: [LOW]
      description: Contains the default result level returned if none of the conditions in the policy are evaluated to true. At this time, the value must be `LOW`.
    EnumRiskPolicySetTriggerType:
      type: string
      enum: [POLICY_SET_STAGING]
      description: A string that specifies the trigger type for the policy set. The only option is `POLICY_SET_STAGING`.
    EnumPredictorCompositeConditionType:
      type: string
      enum: [VALUE_COMPARISON, IP_RANGE, IP_COMPARISON, STRING_LIST, AND, NOT, OR]
    EnumPredictorNewDeviceDetectType:
      type: string
      description: Used only for New Device predictors and Suspicious Device predictors. Both of these predictor types use the value `DEVICE` for `type`. The `detect` field is used to specify the kind of devices you are trying to detect.
      enum: [NEW_DEVICE, SUSPICIOUS_DEVICE]
    EnumPredictorType:
      type: string
      enum: [ADVERSARY_IN_THE_MIDDLE, ANONYMOUS_NETWORK, BOT, COMPOSITE, DEVICE, EMAIL_REPUTATION, GEO_VELOCITY, IP_REPUTATION, MAP, TRAFFIC_ANOMALY, USER_LOCATION_ANOMALY, USER_RISK_BEHAVIOR, VELOCITY]
      description: An enum type that specifies the type of the predictor. Note that both the New Device and Suspicious Device predictors use the type DEVICE. To differentiate between them, you use the `detect` field.
    EnumPredictorUnit:
      type: string
      enum: [DAY, HOUR]
    EnumPredictorVelocityFallbackStrategy:
      type: string
      enum: [ENVIRONMENT_MAX]
    EnumPredictorVelocityMeasure:
      type: string
      enum: [DISTINCT_COUNT]
    EnumPredictorVelocityUseType:
      type: string
      enum: [POISSON_WITH_MAX]
    EnumRiskPredictorTrafficAnomalyRuleIntervalUnit:
      type: string
      enum: [DAY, HOUR]
      description: The time unit for defining the timeframe for tracking number of users on the device - can be `DAY` or `HOUR`
    EnumRiskPredictorTrafficAnomalyRuleType:
      type: string
      enum: [UNIQUE_USERS_PER_DEVICE]
      description: The type of rule. Currently the only valid value is `UNIQUE_USERS_PER_DEVICE` - for tracking the number of unique users for a device over a defined timeframe.
    EnumResultType:
      type: string
      enum: [VALUE]
      description: A string that specifies the risk evaluation result type. Options are `VALUE`.
    EnumRiskLevel:
      type: string
      enum: [LOW, MEDIUM, HIGH]
      description: Enum string that specifies a given risk level.  Options are `LOW`, `MEDIUM`, `HIGH`.
    EnumUserRiskBehaviorRiskModel:
      type: string
      enum: [points, login_anomaly_statistic]
      description: Enum string that specifies the risk model.  Options are `points` (individual user model) and `login_anomaly_statistic` (organization wide model).
    EnumThresholdSource:
      type: string
      enum: [MIN_NOT_REACHED, CALCULATED, ENVIRONMENT_FALLBACK, DEFAULT_FALLBACK]
      description:  >-
        An enum indicating the source used to calculate the threshold. This can be
        `MIN_NOT_REACHED`. If the measure is less than `every.minSample`, the threshold isn't calculated. Instead, a value of `LOW` is automatically assigned. If less than five IPs were used by the user during the past hour, `MIN_NOT_REACHED` is set.
        `CALCULATED`. Indicates the threshold is guaranteed to be calculated.
        `ENVIRONMENT_FALLBACK`. Indicates a global threshold calculated for the entire environment is used. The global threshold is used when the `ipVelocityByUser.threshold` couldn't be calculated, generally due to a lack of past transactions for the risk predictor to use for the threshold calculation.
        `DEFAULT_FALLBACK`. Indicates the default threshold defined for the predictor (in `threshold.medium` or `threshold.high`) is used. The default threshold is used when `ENVIRONMENT_FALLBACK` (the global threshold) couldn't be calculated, generally due to a lack of past transactions for the risk predictor to use for the environment threshold calculation.
    EnumUserType:
      type: string
      enum: [EXTERNAL]
      description: A string that specifies the type of user associated with the event. Options are `EXTERNAL`.
    ObjectEnvironment:
      type: object
      readOnly: true
      properties:
        id:
          type: string
          readOnly: true
          description: A string that specifies the environment associated with the object.
    P1Error:
      type: object
      properties: 
        id:
          description: A unique identifier that is stored in log files and always included in an error response. This value can be used to track the error received by the client, with server-side activity included for troubleshooting purposes.
          type: string
        code:
          description: A general fault code which the client must handle to provide all exception handling routines and to localize messages for users. This code is common across all PingOne services and is human readable (such as a defined constant rather than a number).
          type: string
        message:
          description: A short description of the error. This message is intended to assist with debugging and is returned in English only.
          type: string
        details:
          description: Additional details about the error. Optional information to help resolve the error and to display to users.
          type: array
          items:
            type: object
            properties:
              code:
                description: A general fault code which the client must handle to provide all exception handling routines and to localize messages for users. This code is common across all PingOne services and is human readable (such as a defined constant rather than a number).
                type: string
              target:
                description: The item that caused the error (such as a form field ID or an attribute inside a JSON object).
                type: string
              message:
                description: A short description of the error. This message is intended to assist with debugging and is returned in English only.
                type: string
              innerError:
                description: Additional details to help the client developer resolve the fault (primarily for UI validation reasons).
                type: object
                properties:
                  rangeMinimumValue:
                    description: Errors that failed due to range violation. This attribute represents the minimum value of the range.
                    type: integer
                  rangeMaximumValue:
                    description: The maximum range or value of an attribute.
                    type: integer
                  allowedPattern:
                    description: A regex pattern describing an acceptable input pattern.
                    type: string
                  allowedValues:
                    description: A list describing acceptable values.
                    type: array
                    items:
                      type: string
                  maximumValue:
                    description: The maximum value allowed for the request.
                    type: integer
                  referencedValues:
                    type: array
                    items:
                      type: string
    RiskEvaluation:
      type: object
      properties:
        '_links':
          $ref: '#/components/schemas/LinksHATEOAS'
        createdAt:
          type: string
          readOnly: true
          description: The time the resource was created (format ISO-8061).
        details:
          $ref: '#/components/schemas/RiskEvaluationDetails'
          readOnly: true
          description: A details object that provides additional information about the risk evaluation.
        environment:
          $ref: '#/components/schemas/ObjectEnvironment'
        event:
          $ref: '#/components/schemas/RiskEvaluationEvent'
          description: An object that specifies the attributes to identify the event. This is a required property. For more information about event attributes, see the Event Data Model table.
        id:
          type: string
          readOnly: true
          description: A string that specifies the resource’s unique identifier.
        riskPolicySet:
          type: object
          properties:
            id:
              type: string
              description: A string that specifies the risk policy set resource's unique identifier. If the risk policy set ID and name are both specified, the policy set specified by the riskPolicySet.id is used. If the risk policy set ID and name are not specified, the environment's default risk policy set is used.
            name:
              type: string
              description: A string that specifies the risk policy set name associated with this risk evaluation resource. If the risk policy set ID and name are both specified, the policy set specified by the riskPolicySet.id is used. If the risk policy set name and ID are not specified, the environment's default risk policy set is used.
        result:
          $ref: '#/components/schemas/RiskEvaluationResult'
          readOnly: true
          description: A result object that specifies the result that corresponds to the risk policy that evaluates as true. If there are several risk policies that evaluate as true, the result that corresponds to the highest priority risk policy is returned. If no risk policy evaluates as true, the result is the defaultResult of the policy set.
        updatedAt:
          type: string
          readOnly: true
          description: The time the resource was last updated (format ISO-8061).
      required:
        - event
    RiskEvaluationDetails:
      type: object
      readOnly: true
      properties:
        ipAddressReputation:
          type: object
          properties: 
            level:
              $ref: '#/components/schemas/EnumRiskLevel'
              description: A string that specifies the risk level of the evaluated IP address. Options are LOW, MEDIUM, and HIGH. If the score is less than 55, the level is LOW; if the score is greater than 77, the level is HIGH; if the score is between 55 and 77, the level is MEDIUM. Note that these guidelines could change based on data analytics and product consideration. If the ipAddressReputation.score is unknown, NULL is returned.
            score:
              type: integer
              description: An integer that represents the calculated score of the IP address involved in the transaction. Scores range between 0 and 100. A score of 0 indicates a non-risky IP address; a score of 100 indicates a high-risk IP address. If the IP address reputation score is not available for the specific IP address, NULL is returned.
        ipVelocityByUser:
          type: object
          properties: 
            level:
              $ref: '#/components/schemas/EnumRiskLevel'
              description: An enum indicating whether the number of distinct IPs for the user in the past hour is flagged as LOW, MEDIUM, or HIGH.
            reason:
              type: string
              description: A string indicating the reason the user was flagged. For example "More than 13 IPs were accessed by John during the last 1 hour."
            threshold:
              type: object
              description: The information about the threshold used.
              properties:
                high:
                  type: integer
                  description: An integer indicating the value calculated for the high threshold. If the user accessed more than the high number of IPs during the past hour, they're flagged as a HIGH ipVelocityByUser.level.
                medium:
                  type: integer
                  description: An integer indicating the value calculated for the medium threshold. If the user accessed more than the medium number of IPs during the past hour, they're flagged as a MEDIUM ipVelocityByUser.level.
                source:
                  $ref: '#/components/schemas/EnumThresholdSource'
                calculatedAt:
                  type: string
                  description: A date-time indicating the timestamp for the calculated threshold.
                expiresAt:
                  type: string
                  description: A date-time indicating when the threshold will be recalculated. The recalculation will happen before this time.
            velocity:
              type: object
              description: Integer values for the measures used to calculate velocity.
              properties:
                distinctCount:
                  type: integer
                  description: This is the distinct count for the previous seconds indicated by the during value.
                during:
                  type: integer
                  description: The interval (in seconds) during which the velocity is calculated.
        userVelocityByIp:
          type: object
          properties: 
            level:
              $ref: '#/components/schemas/EnumRiskLevel'
              description: An enum indicating whether the calculated number of users per IP is LOW, MEDIUM, or HIGH.
            reason:
              type: string
              description: A string indicating the reason the user was flagged. For example "More than 250 users accessed IP address 1.1.1.1 during the last 1 hour."
            threshold:
              type: object
              description: The information about the calculated threshold used.
              properties:
                high:
                  type: integer
                  description: An integer indicating the value calculated for the high threshold. If the IP was accessed by more than the high number of users during the past hour, the IP is flagged as a HIGH userVelocityByIp.level.
                medium:
                  type: integer
                  description: An integer indicating the value calculated for the medium threshold. If the IP was accessed by more than the medium number of users during the past hour, the IP is flagged as a MEDIUM userVelocityByIp.level
                source:
                  $ref: '#/components/schemas/EnumThresholdSource'
                calculatedAt:
                    type: string
                    description: A date-time indicating the timestamp for the calculated threshold.
                expiresAt:
                    type: string
                    description: A date-time indicating when the threshold will be recalculated. The recalculation will happen before this time.
            velocity:
              type: object
              description: Integer values for the measures used to calculate velocity.
              properties:
                distinctCount:
                  type: integer
                  description: Relevant only for predictors having a measure value of "DISTINCT_COUNT". This is the number of users that accessed the IP in the past during seconds.
                during:
                  type: integer
                  description: The interval (in seconds) during which the velocity is calculated.
        impossibleTravel:
          type: boolean
          description: >-
            A boolean that specifies whether the distance between the location of the user in their previous successful authentication and current authentication infers that the user had to travel at a speed greater than 1000 kilometers per hour. This condition is marked as fulfilled, only if:
            Location data is available for the current and previous IP address of the user.
            This is not the first transaction that the user has performed.
            The user’s previous successful transaction was performed less than 24 hours ago.
            The user moved a distance of at least 100 kilometers. Thus, even if the user moved very fast, but moved only a distance of 90 kilometers, the condition is not fulfilled.
            The user moved at a speed greater than 1000 kilometers per hour.
        estimatedSpeed:
          type: number
          description: The calculated travel speed in units of kilometers per hour.
        anonymousNetworkDetected:
          type: boolean
          description: A boolean that specifies whether the current authentication originated from an anonymous network (for example, proxy or VPN).
        country:
          type: string
          description: A string that specifies the country related to current transaction from the IP address.
        state:
          type: string
          description: A string that specifies the state related to current transaction from the IP address.
        city:
          type: string
          description: A string that specifies the city related to current transaction from the IP address.
        longitude:
          type: number
          description: A double-precision floating point that specifies the longitude related to current transaction from the IP address. Values range from -90 to 90.
        latitude:
          type: number
          description: A double-precision floating point that specifies the latitude related to current transaction from the IP address. Values range from -180 to 180.
        previousSuccessfulTransaction:
          type: object
          properties:
            anonymousNetworkDetected:
              type: boolean
              description: A boolean that specifies whether an anonymous network was detected. Information is available twenty-four hours after the last successful transaction.
            country:
              type: string
              description: A string that specifies the country of the IP address involved in the transaction. Information is available twenty-four hours after the last successful transaction.
            state:
              type: string
              description: A string that specifies the state of the IP address involved in the transaction. Information is available twenty-four hours after the last successful transaction.
            city:
              type: string
              description: A string that specifies the city of the IP address involved in the transaction. Information is available twenty-four hours after the last successful transaction.
            ip:
              type: string
              description: A string that specifies the IP address involved in the transaction. Information is available twenty-four hours after the last successful transaction.
            timestamp:
              type: string
              description: A date that specifies the timestamp of the transaction. Information is available twenty-four hours after the last successful transaction.
        userBasedRiskBehavior:
          type: object
          properties:
            level:
              $ref: '#/components/schemas/EnumRiskLevel'
              description: A string that specifies the risk score calculated for the user behavior for all transactions associated with the accessing device, and for the current authentication attempt. Options are LOW, MEDIUM, and HIGH. This information is available only if customers have agreed to data consent and the intelligence.allowDataConsent property in the PingOne license is set to true.
            reason:
              type: string
              description: A string that describes the reason (or reasons) provided for the user behavior risk score classification (for example, the operating system or browser type used by the device, and country in which the accessing device is located). Each reason is classified as Unusual, to indicate how much it deviates from normal user behavior, and its effect in calculating the overall user behavior risk score.
        userRiskBehavior:
          type: object
          properties:
            level:
              $ref: '#/components/schemas/EnumRiskLevel'
              description: A string that specifies the risk score calculated for the user behavior within the organization associated with the accessing device, and for the current authentication attempt. Options are LOW, MEDIUM, and HIGH. This information is available only if customers have agreed to data consent and the intelligence.allowDataConsent property in the PingOne license is set to true.
            reason:
              type: string
              description: A string that describes the reason (or reasons) provided for the user behavior risk score classification within the organization (for example, the operating system or browser type used by the device, and country in which the accessing device is located). Each reason is classified as Unusual or Very Unusual, to indicate how much it deviates from normal user behavior, and its effect in calculating the overall user behavior risk score.
    RiskEvaluationEvent:
      type: object
      properties:
        browser:
          type: object
          description: An object that specifies the browser fingerprint attributes. Browser data can be retrieved using browser fingerprint JS. For more information, see Overview of the PingOne Risk Integration Kit.
          properties:
            userAgent:
              type: string
            cookie:
              type: string
            language:
              type: string
            colorDepth:
              type: number
            deviceMemory:
              type: number
            hardwareConcurrency:
              type: number
            screenResolution:
              type: array
              items:
                type: number
            availableScreenResolution:
              type: array
              items:
                type: number
            timezoneOffset:
              type: number
            timezone:
              type: string
            sessionStorage:
              type: boolean
            localStorage:
              type: boolean
            indexedDb:
              type: boolean
            addBehaviour:
              type: object
            openDatabase:
              type: boolean
            cpuClass:
              type: string
            platform:
              type: string
            plugins:
              type: array
              items:
                type: object
            webglVendorAndRenderer:
              type: string
            webgl:
              type: array
              items:
                type: string
            adBlock:
              type: boolean
            hasLiedLanguages:
              type: boolean
            hasLiedResolution:
              type: boolean
            hasLiedOs:
              type: boolean
            hasLiedBrowser:
              type: boolean
            touchSupport:
              type: array
              items:
                type: string
            fonts:
              type: array
              items:
                type: string
            audio:
              type: string
        completionStatus:
          $ref: '#/components/schemas/EnumCompletionStatus'
        evaluatedFactors:
          type: object
          properties:
            status:
              $ref: '#/components/schemas/EnumCompletionStatus'
            type:
              type: string
              description: A string that specifies the transaction type.
        ip:
          type: string
          description: A string that specifies the origin IP address of the authentication flow. This is a required property.
        flow:
          type: object
          properties:
            type:
              $ref: '#/components/schemas/EnumFlowType'
        origin:
          type: string
          description: A string that specifies the calling service.
        session:
          type: object
          properties:
            id:
              type: string
              description: A string that specifies a unique session ID associated with the event.
          required:
            - id
        targetResource:
          type: object
          properties:
            id:
              type: string
              description: A string that specifies the ID of the target application.
            name:
              type: string
              description: A string that specifies the name of the target application.
        user:
          type: object
          properties:
            id:
              type: string
              description: A string that specifies the ID of the user associated with the event (maximum size 1024 characters). This is a required property.
            name:
              type: string
              description: A string that specifies the name of the user associated with the event (maximum size 1024 characters).
            type:
              $ref: '#/components/schemas/EnumUserType'
            groups:
              type: array
              description: An array of group names.
              items:
                type: object
                properties:
                  name:
                    type: string
                    description: A string that specifies the name of the group (maximum size 1024 characters).
          required:
            - id
            - type
        sharingType:
          $ref: '#/components/schemas/EnumEventSharingType'
      required:
        - ip
        - user
    RiskEvaluationResult:
      type: object
      properties:
        type:
          $ref: '#/components/schemas/EnumResultType'
          readOnly: true
        level:
          $ref: '#/components/schemas/EnumRiskLevel'
          readOnly: true
          description: A string that specifies the risk evaluation result level. Options are HIGH, MEDIUM, and LOW.
        value:
          type: string
          readOnly: true
          description: A string that specifies any custom attribute the administrator defines.
    RiskPolicy:
      type: object
      properties:
        '_links':
          $ref: '#/components/schemas/LinksHATEOAS'
        condition:
          type: object
          description: Contains the condition logic that determines when a policy is evaluated to true and when it is evaluated to false.
          properties:
            type:
              $ref: '#/components/schemas/EnumRiskPolicyConditionType'
            contains:
              type: string
            ipRange:
              type: array
              items:
                type: string
            value:
              type: string
            equals:
              oneOf:
                - type: string
                - type: boolean
            aggregatedWeights:
              type: array
              description: Required for weights-based policies. The elements in the array are `value`-`weight` pairs, representing a weighting for the weighted average calculation that should be assigned to a specific predictor when it is determined that there is a high risk for the predictor.
              items:
                type: object
                properties:
                  value:
                    type: string
                    description: Text that identifies a specific risk predictor in the environment. It uses the form `${details.xxxxxxx.level}`, where the string between `details` and `level` is the compact name of the relevant predictor.
                  weight:
                    type: integer
                    description: The score you want to assign to the predictor when it is determined that there is a high risk for the predictor. Value should be between 0 and 100. If it is determined that there is medium risk, the predictor will automatically be assigned a score equal to half of the value you specified for high risk.
                required:
                  - value
                  - weight
            aggregatedScores:
              type: array
              description: Required for score-based policies. The elements in the array are `value`-`score` pairs, representing the score that should be assigned to a specific predictor when it is determined that there is a high risk for the predictor.
              items:
                type: object
                properties:
                  value:
                    type: string
                    description: Text that identifies a specific risk predictor in the environment. It uses the form `${details.xxxxxxx.level}`, where the string between `details` and `level` is the compact name of the relevant predictor.
                  score:
                    type: integer
                    description: The score you want to assign to the predictor when it is determined that there is a high risk for the predictor. Value should be between 0 and 100. If it is determined that there is medium risk, the predictor will automatically be assigned a score equal to half of the value you specified for high risk.
                required:
                  - value
                  - score
            between:
              type: object
              properties:
                minScore:
                  type: integer
                  description: Required for policies of type `AGGREGATED_SCORES` or `AGGREGATED_WEIGHTS`. The beginning of the risk score range that will be translated into the specified risk level (`MEDIUM` or `HIGH`). Must be between `0` and `1000`.
                  minimum: 0
                  maximum: 1000
                maxScore:
                  type: integer
                  description: Required for policies of type `AGGREGATED_SCORES` or `AGGREGATED_WEIGHTS`. The end of the risk score range that will be translated into the specified risk level (`MEDIUM` or `HIGH`). Must be between `0` and `1000`.
                  minimum: 0
                  maximum: 1000
              required:
                - minScore
                - maxScore
        createdAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was first created (format ISO-8061).
        description:
          type: string
          description: A string that specifies a description for this risk policy. This is an optional property. Valid characters consist of any Unicode letter, mark (for example, accent, umlaut), numeric character, punctuation character, or space. Maximum size is 1024 characters.
        environment:
          $ref: '#/components/schemas/ObjectEnvironment'
        id:
          type: string
          readOnly: true
          description: A string that specifies the resource’s unique identifier.
        name:
          type: string
          description: A string that specifies a name for this risk policy. Valid characters consist of any Unicode letter, mark (for example, accent, umlaut), numeric character, forward slash, dot, apostrophe, underscore, space, or hyphen. Maximum size is 256 characters.
        priority:
          type: integer
          description: An integer that specifies priority of the policy inside a risk policy set, designating which policy should run first. This is a read-only value. The priority is determined by the order in which policies are listed in the policy set. The first policy in the list is assigned priority 1 and is evaluated first. The next policy in the list is assigned priority 2 and so on.
        result:
          $ref: '#/components/schemas/RiskPolicyResult'
        updatedAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was last updated (format ISO-8061).
      required:
        - name
        - result
        - condition
    RiskPolicySet:
      type: object
      properties:
        '_links':
          $ref: '#/components/schemas/LinksHATEOAS'
        createdAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was created (format ISO-8061).
        default:
          type: boolean
          description: A boolean that specifies whether this risk policy set is the environment's default risk policy set, which is used whenever an explicit policySet ID is not specified in the risk policy evaluation request. If this property is not specified, the value defaults to false, and this risk policy set is not regarded as the default risk policy set for the environment. When this property is set to true (in PUT or POST requests), the default property of all other risk policy sets in the environment is set to false.
        defaultResult:
          type: object
          description: A result object that specifies the default result returned if none of the conditions in the policy set are evaluated to true. At this time, the defaultResultLevel value must be LOW.
          properties:
            level:
              $ref: '#/components/schemas/EnumRiskPolicyResultLevel'
            type:
              $ref: '#/components/schemas/EnumResultType'
          required:
            - level
        description:
          type: string
          description: A string that specifies a description for this policy set. This is an optional property. Valid characters consist of any Unicode letter, mark (for example, accent, umlaut), numeric character, punctuation character, or space. Maximum size is 1024 characters.
        environment:
          $ref: '#/components/schemas/ObjectEnvironment'
        id:
          type: string
          readOnly: true
          description: A string that specifies the resource’s unique identifier.
        name:
          type: string
          description: A string that specifies a name for this policy set. Valid characters consist of any Unicode letter, mark (for example, accent, umlaut), numeric character, forward slash, dot, apostrophe, underscore, space, or hyphen. Maximum size is 256 characters.
        riskPolicies:
          type: array
          description: An array of policies related to this policy set.
          items:
            $ref: '#/components/schemas/RiskPolicy'
        updatedAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was last updated (format ISO-8061).
        evaluatedPredictors:
          type: array
          description: The IDs for the predictors to evaluate in this policy set. In POST and PUT requests, if this property is null, all of the licensed predictors are used.
          items:
            type: object
            properties:
              id:
                type: string
                description: A string that specifies the resource’s unique identifier.
            required:
              - id
        triggers:
          type: array
          description: An array of triggers related to this policy set.
          items:
            type: object
            properties:
              type:
                $ref: '#/components/schemas/EnumRiskPolicySetTriggerType'
              policySet:
                type: object
                properties:
                  id:
                    type: string
                    description: A string that specifies the resource’s unique identifier.
                required:
                  - id
              expiresAt:
                type: string
                format: date-time
                description: The time the trigger expires (format ISO-8061).
            required:
              - type
              - policySet
              - expiresAt
      required:
        - name
    RiskPolicyResult:
      type: object
      description: A result object that specifies the result returned if the policy is evaluated as true. If several policies are evaluated as true, the result related to the highest priority policy is returned. for more information, see the Result attribute data model in the Risk Evaluations topic.
      properties:
        level:
          $ref: '#/components/schemas/EnumRiskLevel'
        type:
          $ref: '#/components/schemas/EnumResultType'
        value:
          type: string
      required:
        - level
    RiskPredictor:
      oneOf:
        - $ref: '#/components/schemas/RiskPredictorAdversaryInTheMiddle'
        - $ref: '#/components/schemas/RiskPredictorAnonymousNetwork'
        - $ref: '#/components/schemas/RiskPredictorBotDetection'
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - $ref: '#/components/schemas/RiskPredictorComposite'
        - $ref: '#/components/schemas/RiskPredictorCustom'
        - $ref: '#/components/schemas/RiskPredictorDevice'
        - $ref: '#/components/schemas/RiskPredictorEmailReputation'
        - $ref: '#/components/schemas/RiskPredictorGeovelocity'
        - $ref: '#/components/schemas/RiskPredictorIPReputation'
        - $ref: '#/components/schemas/RiskPredictorTrafficAnomaly'
        - $ref: '#/components/schemas/RiskPredictorUserLocationAnomaly'
        - $ref: '#/components/schemas/RiskPredictorUserRiskBehavior'
        - $ref: '#/components/schemas/RiskPredictorVelocity'
    RiskPredictorCommon:
      type: object
      properties:
        '_links':
          $ref: '#/components/schemas/LinksHATEOAS'
        id:
          type: string
          readOnly: true
          description: A string that specifies the resource’s unique identifier.
        environment:
          $ref: '#/components/schemas/ObjectEnvironment'
        name:
          type: string
          description: A string type. A unique, friendly name for the predictor. This name is displayed in the Risk Policies UI, when the admin is asked to define the overrides and weights.
        compactName:
          type: string
          description: A string type. A unique name for the predictor. This property is immutable; it cannot be modified after initial creation. The value must be alpha-numeric, with no special characters or spaces. This name is used in the API both for policy configuration, and in the Risk Evaluation response (under details).
          format: ^[a-zA-Z0-9]+$
        type:
          $ref: '#/components/schemas/EnumPredictorType'
        description:
          type: string
          description: A string type. This specifies the description of the risk predictor. Maximum length is 1024 characters.
          maxLength: 1024
        createdAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was created.
        updatedAt:
          type: string
          format: date-time
          readOnly: true
          description: The time the resource was updated.
        licensed:
          type: boolean
          readOnly: true
          description: Indicates whether PingOne Risk is licensed for the environment.
        deletable:
          type: boolean
          readOnly: true
          description: A boolean to indicate whether the predictor is deletable in the environment.
        default:
          type: object
          description: Contains the default values used for a new risk predictor.
          properties:
            weight:
              type: integer
              description: An integer type. This specifies the weight assigned to the risk predictor in a new policy by default.
            score:
              type: integer
            evaluated:
              type: boolean
            result:
              type: object
              description: >-
                This specifies the result assigned to the predictor if the predictor could not be calculated during the risk evaluation. If this field is not provided, and the predictor could not be calculated during risk evaluation, the following options are:
                If the predictor is used in an override, the override is skipped.
                In the weighted policy, the predictor will have a weight of 0.
              properties:
                level:
                  $ref: '#/components/schemas/EnumRiskLevel'
                type:
                  $ref: '#/components/schemas/EnumResultType'
              required:
                - type
          required:
            - weight
        condition:
          type: object
          readOnly: true
          properties:
            scores:
              type: array
              items:
                type: object
                properties:
                  name:
                    type: string
                  value:
                    type: string
      required:
        - name
        - compactName
        - type
    RiskPredictorAdversaryInTheMiddle:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            domainWhiteList:
              type: array
              description: A list of strings that specify legitimate domains that users will access for restricted resources.
              items:
                type: string
    RiskPredictorAnonymousNetwork:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            whiteList:
              type: array
              description: A list of IP addresses (CIDRs) that are ignored for the predictor results.
              items:
                type: string
                format: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
    RiskPredictorBotDetection:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            includeRepeatedEventsWithoutSdk:
              type: boolean
              description: Set the value of `includeRepeatedEventsWithoutSdk` to `true` to expand the range of bot activity that PingOne Protect can detect.
    RiskPredictorComposite:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            compositions:
              type: array
              description: Contains the objects that specify the conditions to test and the risk level that should be assigned if the conditions are met. The array can contain a maximum of three elements.
              items:
                properties:
                  condition:
                    $ref: '#/components/schemas/RiskPredictorCompositeConditionBase'
                  level:
                    $ref: '#/components/schemas/EnumRiskLevel'
                required:
                  - condition
                  - level
          required:
            - compositions
    RiskPredictorCompositeAnd:
      type: object
      properties:
        and:
          type: array
          items:
            $ref: '#/components/schemas/RiskPredictorCompositeCondition'
        type:
          $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
      required:
        - and
    RiskPredictorCompositeConditionBase:
      oneOf:
        - $ref: '#/components/schemas/RiskPredictorCompositeNot'
        - $ref: '#/components/schemas/RiskPredictorCompositeAnd'
        - $ref: '#/components/schemas/RiskPredictorCompositeOr'
    RiskPredictorCompositeCondition:
      oneOf:
        - $ref: '#/components/schemas/RiskPredictorCompositeNot'
        - $ref: '#/components/schemas/RiskPredictorCompositeOr'
        - $ref: '#/components/schemas/RiskPredictorCompositeAnd'
        - $ref: '#/components/schemas/RiskPredictorCompositeIPRange'
        - type: object
          properties:
            contains:
              type: string
              format: ^\${(event|details)[a-z\.]+}$
            list:
              type: array
              items:
                type: string
            type:
              $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
          required:
            - contains
            - list
            - type
        - type: object
          properties:
            equals:
              oneOf:
                - type: string
                - type: integer
            notEquals:
              oneOf:
                - type: string
                - type: integer
            greater:
              type: integer
            greaterEquals:
              type: integer
            lower:
              type: integer
            lowerEquals:
              type: integer
            value:
              type: string
              format: ^\${(event|details)[a-z\.]+}$
            type:
              $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
          required:
            - value
    RiskPredictorCompositeNot:
      type: object
      properties:
        not:
          $ref: '#/components/schemas/RiskPredictorCompositeOr'
        type:
          $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
      required:
        - not
    RiskPredictorCompositeOr:
      type: object
      properties:
        or:
          type: array
          items:
            $ref: '#/components/schemas/RiskPredictorCompositeCondition'
        type:
          $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
      required:
        - or
    RiskPredictorCompositeIPRange:
      type: object
      description: The mapping of risk levels for the IP ranges specified.
      properties:
        contains:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        notContains:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        equals:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        notEquals:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        type:
          $ref: '#/components/schemas/EnumPredictorCompositeConditionType'
        ipRange:
          type: array
          description: List of CIDRs to include
          items:
            type: string
            pattern: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
        ip:
          type: string
          pattern: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
      required:
        - ipRange
    RiskPredictorCustom:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            map:
              type: object
              description: An object that defines the mapping of risk levels for the list of all results.
              properties:
                high:
                  $ref: '#/components/schemas/RiskPredictorCustomItem'
                medium:
                  $ref: '#/components/schemas/RiskPredictorCustomItem'
                low:
                  $ref: '#/components/schemas/RiskPredictorCustomItem'
          required:
            - map
    RiskPredictorCustomItem:
      oneOf:
        - $ref: '#/components/schemas/RiskPredictorCustomItemIPRange'
        - $ref: '#/components/schemas/RiskPredictorCustomItemBetween'
        - $ref: '#/components/schemas/RiskPredictorCustomItemList'
    RiskPredictorCustomItemIPRange:
      type: object
      description: The mapping of risk levels for the IP ranges specified.
      properties:
        contains:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        type:
          type: string
          readOnly: true
        ipRange:
          type: array
          description: List of CIDRs to include
          items:
            type: string
            pattern: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
      required:
        - contains
        - ipRange
    RiskPredictorCustomItemBetween:
      type: object
      description: The mapping of risk levels for numerical values in a minimum, maxiumum boundary.
      properties:
        contains:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        type:
          type: string
          readOnly: true
        between:
          type: object
          description: Minimum and maximum boundaries
          properties:
            minScore:
              type: number
              format: float
            maxScore:
              type: number
              format: float
          required:
            - minScore
            - maxScore
      required:
        - contains
        - between
    RiskPredictorCustomItemList:
      type: object
      description: The mapping of risk levels for the list of all results.
      properties:
        contains:
          type: string
          format: ^\${(event|details)[a-z\.]+}$
        type:
          type: string
          readOnly: true
        list:
          type: array
          description: An array that specifies the list of entities that represent the risk conditions.
          items:
            type: string
      required:
        - contains
        - list
    RiskPredictorEmailReputation:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
    RiskPredictorGeovelocity:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            whiteList:
              type: array
              description: A list of IP addresses (CDIRs) that are ignored for the predictor results.
              items:
                type: string
                pattern: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
    RiskPredictorIPReputation:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            whiteList:
              type: array
              description: A list of IP addresses (CDIRs) that are ignored for the predictor results.
              items:
                type: string
                pattern: ^((25[0-5]|(2[0-4]|1\d|[1-9]|)\d)\.?\b){4}$
    RiskPredictorDevice:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            detect:
              $ref: '#/components/schemas/EnumPredictorNewDeviceDetectType'
            shouldValidatePayloadSignature:
              type: boolean
              description: Relevant only for Suspicious Device predictors. If `shouldValidatePayloadSignature` is set to `true`, then any risk policies that include this predictor will require that the Signals SDK payload be provided as a signed JWT whose signature will be verified before proceeding with risk evaluation. You instruct the Signals SDK to provide the payload as a signed JWT by using the `universalDeviceIdentification` flag during initialization of the SDK, or by selecting the relevant setting for the `skrisk` component in DaVinci flows.
            activationAt:
              type: string
              format: date-time
              description: You can use the `activationAt` parameter to specify a date on which the learning process for the predictor should be restarted. This can be used in conjunction with the fallback setting (`default.result.level`) to force strong authentication when moving the predictor to production. The date should be in an RFC3339 format. Note that activation date uses UTC time.
          required:
            - detect
    RiskPredictorTrafficAnomaly:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            rules:
              type: array
              items:
                type: object
                properties:
                  enabled:
                    type: boolean
                    description: Set to true to use the defined rule in the predictor.
                  interval:
                    type: object
                    description: Object that contains the fields used to define the timeframe to consider. The timeframe can be between 1 hour and 14 days.
                    properties:
                      unit:
                        $ref: '#/components/schemas/EnumRiskPredictorTrafficAnomalyRuleIntervalUnit'
                      quantity:
                        type: integer
                        description: The number of days or hours for the timeframe for tracking number of users on the device.
                    required:
                      - unit
                      - quantity
                  threshold:
                    type: object
                    description: Object that contains the fields used to define the risk thresholds.
                    properties:
                      medium:
                        type: number
                        format: float
                        description: Number of users during the defined timeframe that will be considered Medium risk.
                      high:
                        type: number
                        format: float
                        description: Number of users during the defined timeframe that will be considered High risk.
                    required:
                      - medium
                      - high
                  type:
                    $ref: '#/components/schemas/EnumRiskPredictorTrafficAnomalyRuleType'
                required:
                  - enabled
                  - interval
                  - threshold
                  - type
          required:
            - rules
    RiskPredictorUserLocationAnomaly:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            days:
              type: integer
            radius:
              type: object
              properties:
                distance:
                  type: integer
                  description: A value to apply to the distance radius.  Minimum of 10 miles (16 km) and maximum of 100 miles (160 km)
                  minimum: 10
                  maximum: 160
                unit:
                  $ref: '#/components/schemas/EnumDistanceUnit'
              required:
                - distance
                - unit
          required:
            - days
            - radius
    RiskPredictorUserRiskBehavior:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            predictionModel:
              type: object
              properties:
                name:
                  $ref: '#/components/schemas/EnumUserRiskBehaviorRiskModel'
              required:
                - name
          required:
            - predictionModel
    RiskPredictorVelocity:
      allOf:
        - $ref: '#/components/schemas/RiskPredictorCommon'
        - type: object
          properties:
            by:
              type: array
              items:
                type: string
                format: ^\${event\.user\.id}$|^\${event\.ip}$
            every:
              type: object
              properties:
                unit:
                  $ref: '#/components/schemas/EnumPredictorUnit'
                quantity:
                  type: integer
                minSample:
                  type: integer
            fallback:
              type: object
              properties:
                strategy:
                  $ref: '#/components/schemas/EnumPredictorVelocityFallbackStrategy'
                high:
                  type: number
                  format: float
                medium:
                  type: number
                  format: float
            maxDelay:
              type: object
              properties:
                unit:
                  $ref: '#/components/schemas/EnumPredictorUnit'
                quantity:
                  type: integer
            measure:
              $ref: '#/components/schemas/EnumPredictorVelocityMeasure'
            of:
              type: string
              format: ^\${event\.user\.id}$|^\${event\.ip}$
            slidingWindow:
              type: object
              properties:
                minSample:
                  type: integer
                quantity:
                  type: integer
                unit:
                  $ref: '#/components/schemas/EnumPredictorUnit'
            use:
              type: object
              properties:
                high:
                  type: number
                  format: float
                medium:
                  type: number
                  format: float
                type:
                  $ref: '#/components/schemas/EnumPredictorVelocityUseType'
  responses:
    '400':
      description: Invalid request received.  Malformed JSON, malformed HTTP request.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '401':
      description: Request failed due to authorization issue.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '403':
      description: Request failed due to authorization issue.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '404':
      description: Not found.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '405':
      description: Invalid request received.  Malformed JSON, malformed HTTP request.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '409':
      description: Conflict.
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '429':
      description: Request was rate limited
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
    '500':
      description: Uncaught error occurred.  Platform outage
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/P1Error'
security:
  - bearer: []
tags:
  - name: Risk Management
  - name: Risk Policies
  - name: Risk Evaluations
  - name: Risk Advanced Predictors
paths:
  /environments/{environmentID}/riskPolicySets:
    post:
      tags:
        - Risk Policies
      summary: CREATE Risk Policy Set
      operationId: createRiskPolicySet
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskPolicySet'
              example:
                name: Example Policy
                description: This is an example policy.
                defaultResult:
                  level: Low
                riskPolicies:
                  - name: GEOVELOCITY_ANOMALY
                    result:
                      level: HIGH
                    condition:
                      value: ${details.impossibleTravel}
                      equals: true
                  - name: MEDIUM_WEIGHTED_POLICY
                    result:
                      level: MEDIUM
                    condition:
                      aggregatedWeights:
                        - value: ${details.aggregatedWeights.anonymousNetwork}
                          weight: 8
                        - value: ${details.aggregatedWeights.geoVelocity}
                          weight: 4
                        - value: ${details.aggregatedWeights.ipRisk}
                          weight: 8
                        - value: ${details.aggregatedWeights.ipVelocityByUser}
                          weight: 5
                        - value: ${details.aggregatedWeights.userRiskBehavior}
                          weight: 10
                        - value: ${details.aggregatedWeights.userVelocityByIp}
                          weight: 5
                      between:
                        minScore: 40
                        maxScore: 70
                  - name: HIGH_WEIGHTED_POLICY
                    result:
                      level: HIGH
                    condition:
                      aggregatedWeights:
                        - value: ${details.aggregatedWeights.anonymousNetwork}
                          weight: 8
                        - value: ${details.aggregatedWeights.geoVelocity}
                          weight: 4
                        - value: ${details.aggregatedWeights.ipRisk}
                          weight: 8
                        - value: ${details.aggregatedWeights.ipVelocityByUser}
                          weight: 5
                        - value: ${details.aggregatedWeights.userRiskBehavior}
                          weight: 10
                        - value: ${details.aggregatedWeights.userVelocityByIp}
                          weight: 5
                      between:
                        minScore: 70
                        maxScore: 100
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '405':
          $ref: '#/components/responses/405'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '201':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPolicySet'
    get:
      tags:
        - Risk Policies
      summary: READ Risk Policy Sets
      operationId: readRiskPolicySets
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/EntityArray'
  /environments/{environmentID}/riskPolicySets/{riskPolicySetID}:
    get:
      tags:
        - Risk Policies
      summary: READ One Risk Policy Set
      operationId: readOneRiskPolicySet
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPolicySetID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPolicySet'
    put:
      tags:
        - Risk Policies
      summary: UPDATE Risk Policy Set
      operationId: updateRiskPolicySet
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskPolicySet'
              example:
                name: Example Policy
                description: This is an example policy.
                defaultResult:
                  level: Low
                riskPolicies:
                  - name: GEOVELOCITY_ANOMALY
                    result:
                      level: HIGH
                    condition:
                      value: ${details.impossibleTravel}
                      equals: true
                  - name: MEDIUM_WEIGHTED_POLICY
                    result:
                      level: MEDIUM
                    condition:
                      aggregatedWeights:
                        - value: ${details.aggregatedWeights.anonymousNetwork}
                          weight: 8
                        - value: ${details.aggregatedWeights.geoVelocity}
                          weight: 4
                        - value: ${details.aggregatedWeights.ipRisk}
                          weight: 8
                        - value: ${details.aggregatedWeights.ipVelocityByUser}
                          weight: 5
                        - value: ${details.aggregatedWeights.userRiskBehavior}
                          weight: 10
                        - value: ${details.aggregatedWeights.userVelocityByIp}
                          weight: 5
                      between:
                        minScore: 40
                        maxScore: 80
                  - name: HIGH_WEIGHTED_POLICY
                    result:
                      level: HIGH
                    condition:
                      aggregatedWeights:
                        - value: ${details.aggregatedWeights.anonymousNetwork}
                          weight: 8
                        - value: ${details.aggregatedWeights.geoVelocity}
                          weight: 4
                        - value: ${details.aggregatedWeights.ipRisk}
                          weight: 8
                        - value: ${details.aggregatedWeights.ipVelocityByUser}
                          weight: 5
                        - value: ${details.aggregatedWeights.userRiskBehavior}
                          weight: 10
                        - value: ${details.aggregatedWeights.userVelocityByIp}
                          weight: 5
                      between:
                        minScore: 80
                        maxScore: 100
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPolicySetID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPolicySet'
    delete:
      tags:
        - Risk Policies
      summary: 'DELETE Risk Policy Set '
      operationId: deleteRiskPolicySet
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPolicySetID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '204':
          description: Successful response
  /environments/{environmentID}/riskEvaluations:
    post:
      tags:
        - Risk Evaluations
      summary: CREATE Risk Evaluation
      operationId: createRiskEvaluation
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskEvaluation'
              example:
                event:
                  completionStatus: SUCCESS
                  targetResource:
                    id: 969e4a59-5cf9-44c3-a1ba-9f392bf7f622
                    name: Jira
                  ip: 156.35.85.124
                  flow:
                    type: AUTHENTICATION
                  session:
                    id: 31618b01-08cd-4bee-b0d3-90b895671bb4
                  user:
                    id: john
                    name: John DeMock
                    type: EXTERNAL
                    groups:
                      - name: dev
                      - name: sre
                  sharingType: SHARED
                  browser:
                    userAgent: >-
                      Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_6)
                      AppleWebKit/537.36 (KHTML, like Gecko)
                      Chrome/80.0.3987.122 Safari/537.36
                    language: en
                    colorDepth: 24
                    deviceMemory: 8
                    hardwareConcurrency: 8
                    screenResolution:
                      - 900
                      - 1440
                    availableScreenResolution:
                      - 877
                      - 1380
                    timezoneOffset: -120
                    timezone: Asia/Jerusalem
                    sessionStorage: true
                    localStorage: true
                    indexedDb: true
                    addBehaviour: null
                    openDatabase: true
                    cpuClass: not available
                    platform: MacIntel
                    plugins:
                      - - Chrome PDF Plugin
                        - Portable Document Format
                        - - application x-google-chrome-pdf
                          - pfg
                      - - Chrome PDF Viewer
                        - - application x-google-chrome-pdf
                          - pdf
                    webglVendorAndRenderer: Intel Inc.~Intel Iris Pro OpenGL Engine
                    webgl:
                      - webgl aliased line width range:[1, 1]
                      - webgl alpha bits:8
                      - webgl antialiasing:yes
                      - webgl blue bits:8
                      - webgl depth bits:24
                      - webgl green bits:8
                      - webgl max anisotropy:16
                    adBlock: false
                    hasLiedLanguages: false
                    hasLiedResolution: false
                    hasLiedOs: false
                    hasLiedBrowser: false
                    touchSupport:
                      - '0'
                      - 'false'
                      - 'false'
                    fonts:
                      - Arial
                      - Comic Sans MS
                      - Courier
                      - Courier New
                      - Helvetica
                    audio: '124.04345808873768'
                  origin: PF_RISK_IK
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '405':
          $ref: '#/components/responses/405'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '201':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskEvaluation'
  /environments/{environmentID}/riskEvaluations/{riskEvaluationID}:
    get:
      tags:
        - Risk Evaluations
      summary: READ One Risk Evaluation
      operationId: readOneRiskEvaluation
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskEvaluationID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskEvaluation'
  /environments/{environmentID}/riskEvaluations/{riskEvaluationID}/event:
    put:
      tags:
        - Risk Evaluations
      summary: UPDATE Risk Evaluation
      operationId: updateRiskEvaluation
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskEvaluationEvent'
              example:
                completionStatus: SUCCESS
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskEvaluationID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskEvaluation'
  /environments/{environmentID}/riskPredictors:
    post:
      tags:
        - Risk Advanced Predictors
      summary: CREATE Risk Predictor
      operationId: createRiskPredictor
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskPredictor'
              example:
                name: My Risk Predictor
                compactName: riskPred
                map:
                  high:
                    list: [
                      Dangerous,
                      Insanely Dangerous,
                      Unspeakably Dangerous
                    ]
                    contains: ${event.danger.type}
                  medium:
                    list: [
                      Kinda Dangerous
                    ]
                    contains: ${event.danger.type}
                  low:
                    list: [
                      Kinda Safe,
                      Safe
                    ]
                    contains: ${event.danger.type}
                type: MAP
                default:
                  weight: 5
                  result:
                    level: HIGH
                    type: VALUE
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '405':
          $ref: '#/components/responses/405'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '201':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPredictor'
    get:
      tags:
        - Risk Advanced Predictors
      summary: READ All Risk Predictors
      operationId: readAllRiskPredictors
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/EntityArray'
  /environments/{environmentID}/riskPredictors/{riskPredictorID}:
    get:
      tags:
        - Risk Advanced Predictors
      summary: READ One Risk Predictor
      operationId: readOneRiskPredictor
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPredictorID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPredictor'
    put:
      tags:
        - Risk Advanced Predictors
      summary: UPDATE Risk Predictor
      operationId: updateRiskPredictor
      requestBody:
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/RiskPredictor'
              example:
                name: My Risk Predictor
                compactName: riskPred
                map:
                  high:
                    list: [
                      Dangerous,
                      Insanely Dangerous,
                      Unspeakably Dangerous
                    ]
                    contains: ${event.danger.type}
                  medium:
                    list: [
                      Kinda Dangerous
                    ]
                    contains: ${event.danger.type}
                  low:
                    list: [
                      Kinda Safe,
                      Safe
                    ]
                    contains: ${event.danger.type}
                type: MAP
                default:
                  weight: 5
                  result:
                    level: HIGH
                    type: VALUE
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPredictorID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '200':
          description: Successful response
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/RiskPredictor'
    delete:
      tags:
        - Risk Advanced Predictors
      summary: DELETE Risk Advanced Predictor
      operationId: deleteRiskAdvancedPredictor
      parameters:
        - name: X-Ping-External-Transaction-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate transactions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: X-Ping-External-Session-ID
          in: header
          description: |
            An ID for telemetry purposes to correlate sessions with client systems through PingOne products. This may be a user defined value. If a value isn't provided on the API request, a unique value will be generated in the API response. See [External transaction and session IDs](https://apidocs.pingidentity.com/pingone/platform/v1/api/#external-transaction-and-session-ids) for more information.
            Any invalid characters will be converted to underscores. The following characters are allowed:
            Unicode letters, combining marks, numeric characters, dots, underscores, dashes
            `/`, `@`, `=`, `#`, `+`
          required: false
          schema:
            type: string
            maxLength: 100
        - name: environmentID
          in: path
          schema:
            type: string
          required: true
        - name: riskPredictorID
          in: path
          schema:
            type: string
          required: true
      responses:
        '400':
          $ref: '#/components/responses/400'
        '401':
          $ref: '#/components/responses/401'
        '403':
          $ref: '#/components/responses/403'
        '404':
          $ref: '#/components/responses/404'
        '409':
          $ref: '#/components/responses/409'
        '429':
          $ref: '#/components/responses/429'
        '500':
          $ref: '#/components/responses/500'
        '204':
          description: Successful response