diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-6ec6739e824c8e56d9633622.yaml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-6ec6739e824c8e56d9633622.yaml
index fdbd1e4..ace3213 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-6ec6739e824c8e56d9633622.yaml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-6ec6739e824c8e56d9633622.yaml
@@ -45,11 +45,10 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-bc24fc84643c9386aa8dd06d4216e6c125b244e5"
+    tag: "r-3357c2abd09c33f401a7d1a0d44c03d1e5b5c5e0"
     dir: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai"
     credentials: "git-credentials"
   keystores:
-  - "nai-sh4r3d-keystore-proxy-auth"
   - "nai-default-identity"
   - "nai-sh4r3d-default-default-signer"
   truststores:
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-sh4r3d-keystore-proxy-auth-6ec6739e824c8e56d9633622.yaml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-sh4r3d-keystore-proxy-auth-6ec6739e824c8e56d9633622.yaml
deleted file mode 100644
index fee9f43..0000000
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/etc/nevis/k8s-nai-sh4r3d-keystore-proxy-auth-6ec6739e824c8e56d9633622.yaml
+++ /dev/null
@@ -1,18 +0,0 @@
-apiVersion: "operator.nevis-security.ch/v1"
-kind: "NevisKeyStore"
-metadata:
-  name: "nai-sh4r3d-keystore-proxy-auth"
-  namespace: "adn-postit-tknxchng-01-dev"
-  labels:
-    deploymentTarget: "nai"
-  annotations:
-    projectKey: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT"
-    patternId: "6ec6739e824c8e56d9633622"
-spec:
-  cn: "New_OAuth_2.0_Authorization_Server_OpenID_Provider-signer"
-  usage: "signer"
-  san:
-    dns:
-    - "nai"
-    - "nai.adn-postit-tknxchng-01-dev"
-    email: []
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/conf/esauth4.xml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/conf/esauth4.xml
index 2a04c66..426a227 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/conf/esauth4.xml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/conf/esauth4.xml
@@ -42,11 +42,6 @@
             <!-- source: pattern://d9ea344685ab4a9bb0e1e3e7 -->
             <KeyObject name="tokensigner" certificate="/var/opt/keys/own/tokensigner/cert.pem" privateKey="/var/opt/keys/own/tokensigner/keystore.jks" passPhrase="pipe:///var/opt/keys/own/tokensigner/keypass"/>
         </KeyStore>
-        <!-- source: pattern://f03382307f2e35b70d181f0e -->
-        <KeyStore name="Store_New_OAuth_2.0_Authorization_Server_OpenID_Provider">
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <KeyObject name="Signer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" certificate="/var/opt/keys/own/nai-sh4r3d-keystore-proxy-auth/cert.pem" privateKey="/var/opt/keys/own/nai-sh4r3d-keystore-proxy-auth/keystore.jks" passPhrase="pipe:///var/opt/keys/own/nai-sh4r3d-keystore-proxy-auth/keypass"/>
-        </KeyStore>
     </SessionCoordinator>
     <!-- source: pattern://6ec6739e824c8e56d9633622 -->
     <LocalOutOfContextDataStore reaperPeriod="60"/>
@@ -55,11 +50,7 @@
         <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
         <Domain name="MockRelam" default="false" inactiveInterval="7200" reauthInterval="0" resetAuthenticationCondition="${inargs:cancel}">
             <Entry method="authenticate" state="MockRelam_DispatchMockRequests"/>
-            <Entry method="authenticate" state="MockRelam_AuthorizationServer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" selector="${request:currentResource:^http[s]?\u003A//[^/]+/asdf/.*$:true}"/>
-            <Entry method="authenticate" state="MockRelam_AuthorizationServer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" selector="${request:currentResource:^http[s]?\u003A//[^/]+/qwert/.*$:true}"/>
             <Entry method="stepup" state="MockRelam_Selector"/>
-            <Entry method="stepup" state="MockRelam_AuthorizationServer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" selector="${request:currentResource:^http[s]?\u003A//[^/]+/asdf/.*$:true}"/>
-            <Entry method="stepup" state="MockRelam_AuthorizationServer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" selector="${request:currentResource:^http[s]?\u003A//[^/]+/qwert/.*$:true}"/>
         </Domain>
         <!-- source: pattern://b67f81a971e4c08aa79040a2 -->
         <Domain name="cossa_realm" default="false" inactiveInterval="7200" reauthInterval="0" resetAuthenticationCondition="${inargs:cancel}">
@@ -109,114 +100,6 @@
             <!-- source: pattern://3f7b857b6d35114fcd8c4984 -->
             <property name="statusCode" value="200"/>
         </AuthState>
-        <AuthState name="MockRelam_AuthorizationServer_New_OAuth_2.0_Authorization_Server_OpenID_Provider" class="ch.nevis.esauth.auth.states.oauth2.AuthorizationServer" final="false">
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="authenticate:valid-authorization-request" next="MockRelam_DispatchMockRequests"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="invalid-authorization-request" next="MockRelam_Authentication_Failed"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="invalid-client" next="MockRelam_Authentication_Failed"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="invalid-redirect-uri" next="MockRelam_Authentication_Failed"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="invalid-token-request" next="MockRelam_Authentication_Failed"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="stepup:valid-authorization-request" next="MockRelam_Selector"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="keystoreref" value="Store_New_OAuth_2.0_Authorization_Server_OpenID_Provider"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="keyobjectref" value="Signer_New_OAuth_2.0_Authorization_Server_OpenID_Provider"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="keyID" value="Signer_New_OAuth_2.0_Authorization_Server_OpenID_Provider"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="openid.idTokenLifetime" value="600"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="authCodeLifetime" value="60"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="propagationScope" value="session"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="dataSource" value="nevismeta"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="nevismeta.location" value="https://sdgdf:443/nevismeta/rest/modules/oauthv2/setups/Setup_00000000000000000000000000000000/entities"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="nevismeta.maxAge" value="600"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="openid.support" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="openid.issuerId" value="https://klp.agov-w.azure.adnovum.net"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.openid" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.openid.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.openid.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.openid.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.openid.clientCredentialsFlowPolicy" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.offline_access" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.offline_access.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.offline_access.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.offline_access.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.offline_access.clientCredentialsFlowPolicy" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.address" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.address.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.address.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.address.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.address.clientCredentialsFlowPolicy" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.profile" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.profile.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.profile.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.profile.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.profile.clientCredentialsFlowPolicy" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.email" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.email.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.email.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.email.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.email.clientCredentialsFlowPolicy" value="true"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.phone" value=""/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.phone.authorizationCodeFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.phone.refreshTokenRequestPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.phone.implicitFlowPolicy" value="NO_CONSENT_REQUIRED"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="scope.phone.clientCredentialsFlowPolicy" value="true"/>
-        </AuthState>
-        <AuthState name="MockRelam_Authentication_Failed" class="ch.nevis.esauth.auth.states.standard.AuthError" final="false">
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <Response value="AUTH_ERROR">
-                <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                <Gui name="Error">
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="info" type="error" label="error_99"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="submit" type="button" label="continue.button.label"/>
-                </Gui>
-            </Response>
-        </AuthState>
         <AuthState name="MockRelam_Selector" class="ch.nevis.esauth.auth.states.standard.ConditionalDispatcherState" final="false">
             <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
             <ResultCond name="nomatch" next="MockRelam_Prepare_Done"/>
@@ -228,7 +111,7 @@
         </AuthState>
         <AuthState name="MockRelam_Prepare_Done" class="ch.nevis.esauth.auth.states.scripting.ScriptState" final="false">
             <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-            <ResultCond name="default" next="MockRelam_02_CheckConsent_New_OAuth_2.0_Authorization_Server_OpenID_Provider"/>
+            <ResultCond name="default" next="MockRelam_Auth_Done"/>
             <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
             <Response value="AUTH_DONE">
                 <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
@@ -237,37 +120,6 @@
             <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
             <property name="script" value="file:///var/opt/nevisauth/default/conf/prepare_done.groovy"/>
         </AuthState>
-        <AuthState name="MockRelam_02_CheckConsent_New_OAuth_2.0_Authorization_Server_OpenID_Provider" class="ch.nevis.esauth.auth.states.oauth2.consentstate.ConsentState" final="false">
-            <ResultCond name="ok" next="MockRelam_Auth_Done"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <ResultCond name="reject" next="MockRelam_Authentication_Failed"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <Response value="AUTH_CONTINUE">
-                <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                <Gui name="oauth_consent" label="title.oauth.consent">
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="prompt" type="info" label="info.oauth.consent"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="accept" type="button" label="accept.button.label" value="approve"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="reject" type="button" label="reject.button.label" value="deny" optional="false"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="clientName" type="info" label="" value="${notes:client_name}" optional="false"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="clientLogo" type="image" label="" value="${notes:logo_uri}" optional="false"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="clientToS" type="link" label="consent.tos.link.label" value="${notes:tos_uri}" optional="true"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="clientPolicy" type="link" label="consent.policy.link.label" value="${notes:policy_uri}" optional="true"/>
-                    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-                    <GuiElem name="consentInformation" type="hidden" value="${notes:consentInformation}" optional="true"/>
-                </Gui>
-            </Response>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="dataSource" value="nevismeta"/>
-            <!-- source: pattern://f03382307f2e35b70d181f0e -->
-            <property name="nevismeta.location" value="https://sdgdf:443/nevismeta/rest/modules/oauthv2/setups/Setup_00000000000000000000000000000000/entities"/>
-        </AuthState>
         <AuthState name="MockRelam_Auth_Done" class="ch.nevis.esauth.auth.states.standard.AuthDone" final="false">
             <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
             <Response value="AUTH_DONE">
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/plugin/cossa-token-exchange-authstates.jar b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/plugin/cossa-token-exchange-authstates.jar
index a06c73f..3690fdc 100644
Binary files a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/plugin/cossa-token-exchange-authstates.jar and b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/nai/var/opt/nevisauth/default/plugin/cossa-token-exchange-authstates.jar differ
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
index a78d87c..961d957 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/etc/nevis/k8s-npi-92e282d1dc2b69d9e4f91fc0.yaml
@@ -46,7 +46,7 @@ spec:
   podDisruptionBudget:
     maxUnavailable: "50%"
   git:
-    tag: "r-a6580914174774342b195a78256c5958db82987f"
+    tag: "r-3357c2abd09c33f401a7d1a0d44c03d1e5b5c5e0"
     dir: "DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi"
     credentials: "git-credentials"
   keystores:
diff --git a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-klp.agov-w.azure.adnovum.net/WEB-INF/web.xml b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-klp.agov-w.azure.adnovum.net/WEB-INF/web.xml
index d2286f4..55f3109 100644
--- a/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-klp.agov-w.azure.adnovum.net/WEB-INF/web.xml
+++ b/DEFAULT-ADN-POST-IAM-TKNXCHNG-PROJECT/DEFAULT-ADN-POST-IAM-TKNXCHNG-INV/npi/var/opt/nevisproxy/default/host-klp.agov-w.azure.adnovum.net/WEB-INF/web.xml
@@ -6,66 +6,6 @@
         <param-name>SectokenVerifierCert</param-name>
         <param-value>/var/opt/keys/trust/npi-mockrelam-signer-trust/truststore.pem</param-value>
     </context-param>
-    <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-    <filter>
-        <filter-name>AuthenticationService_MockRelam</filter-name>
-        <filter-class>ch::nevis::isiweb4::filter::auth::IdentityCreationFilter</filter-class>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>AuthenticationServlet</param-name>
-            <param-value>Connector_MockRelam</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>BodyReadSize</param-name>
-            <param-value>32768</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>EntryPointID</param-name>
-            <param-value>klp.agov-w.azure.adnovum.net</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>InactiveInterval</param-name>
-            <param-value>7200</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>InterceptionRedirect</param-name>
-            <param-value>never</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>LoginRendererServlet</param-name>
-            <param-value>LoginRenderer_nli</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>Realm</param-name>
-            <param-value>MockRelam</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>RecheckAuthentication</param-name>
-            <param-value>On</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>RenewIdentification</param-name>
-            <param-value>true</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>StateKey</param-name>
-            <param-value>MockRelam</param-value>
-        </init-param>
-        <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-        <init-param>
-            <param-name>StoreInterceptedRequest</param-name>
-            <param-value>false</param-value>
-        </init-param>
-    </filter>
     <!-- source: pattern://8523f0587aa8cfa7008f8171, pattern://92e282d1dc2b69d9e4f91fc0 -->
     <filter>
         <filter-name>Authentication_MockRelam</filter-name>
@@ -139,33 +79,6 @@
             </param-value>
         </init-param>
     </filter>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <filter>
-        <filter-name>OAuth_Preflighted_CORS_New OAuth 2.0 Authorization Server / OpenID Provider</filter-name>
-        <filter-class>ch::nevis::isiweb4::filter::lua::LuaFilter</filter-class>
-        <!-- source: pattern://f03382307f2e35b70d181f0e -->
-        <init-param>
-            <param-name>Script</param-name>
-            <param-value>
-                function inputHeader(request, response)
-                    response:setHeader("Access-Control-Allow-Origin", "*")
-                    response:setHeader("Access-Control-Allow-Credentials", "true")
-                    response:setHeader("Access-Control-Allow-Methods", "GET, POST, PUT, OPTIONS")
-                    response:setHeader("Access-Control-Allow-Headers", "Authorization")
-                    response:setHeader("Access-Control-Expose-Headers", "*")
-                    response:setHeader("Access-Control-Max-Age", "600")                           
-                    if request:getMethod() == "OPTIONS" then
-                        response:send(204)
-                    end
-                end
-            </param-value>
-        </init-param>
-        <!-- source: pattern://f03382307f2e35b70d181f0e -->
-        <init-param>
-            <param-name>Script.InputHeaderFunctionName</param-name>
-            <param-value>inputHeader</param-value>
-        </init-param>
-    </filter>
     <!-- source: pattern://3b41ca4ca1c4028117d16f5b -->
     <filter>
         <filter-name>ResponseHeader_Default</filter-name>
@@ -239,43 +152,13 @@
     <filter-mapping>
         <filter-name>SessionHandler_MockRelam</filter-name>
         <url-pattern>/*</url-pattern>
-        <exclude-url-regex>^/asdf/.*$|^/errorpages.*$|^/favicon.ico$|^/hallo.txt$|^/index.html$|^/nevislogrend/.*$|^/qwert/.*$|^/resources.*$</exclude-url-regex>
-    </filter-mapping>
-    <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-    <filter-mapping>
-        <filter-name>SessionHandler_MockRelam</filter-name>
-        <url-pattern>/asdf/*</url-pattern>
-    </filter-mapping>
-    <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-    <filter-mapping>
-        <filter-name>SessionHandler_MockRelam</filter-name>
-        <url-pattern>/qwert/*</url-pattern>
-    </filter-mapping>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <filter-mapping>
-        <filter-name>OAuth_Preflighted_CORS_New OAuth 2.0 Authorization Server / OpenID Provider</filter-name>
-        <url-pattern>/asdf/*</url-pattern>
-    </filter-mapping>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <filter-mapping>
-        <filter-name>OAuth_Preflighted_CORS_New OAuth 2.0 Authorization Server / OpenID Provider</filter-name>
-        <url-pattern>/qwert/*</url-pattern>
+        <exclude-url-regex>^/errorpages.*$|^/favicon.ico$|^/hallo.txt$|^/index.html$|^/nevislogrend/.*$|^/resources.*$</exclude-url-regex>
     </filter-mapping>
     <!-- source: pattern://8523f0587aa8cfa7008f8171, pattern://92e282d1dc2b69d9e4f91fc0 -->
     <filter-mapping>
         <filter-name>Authentication_MockRelam</filter-name>
         <url-pattern>/*</url-pattern>
-        <exclude-url-regex>^/asdf/.*$|^/errorpages.*$|^/favicon.ico$|^/hallo.txt$|^/index.html$|^/nevislogrend/.*$|^/qwert/.*$|^/resources.*$</exclude-url-regex>
-    </filter-mapping>
-    <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-    <filter-mapping>
-        <filter-name>AuthenticationService_MockRelam</filter-name>
-        <url-pattern>/asdf/*</url-pattern>
-    </filter-mapping>
-    <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
-    <filter-mapping>
-        <filter-name>AuthenticationService_MockRelam</filter-name>
-        <url-pattern>/qwert/*</url-pattern>
+        <exclude-url-regex>^/errorpages.*$|^/favicon.ico$|^/hallo.txt$|^/index.html$|^/nevislogrend/.*$|^/resources.*$</exclude-url-regex>
     </filter-mapping>
     <!-- source: pattern://8523f0587aa8cfa7008f8171 -->
     <listener>
@@ -332,12 +215,6 @@
             <param-value>/var/opt/keys/own/npi-mockrelam-identity/key.pem</param-value>
         </init-param>
     </servlet>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <servlet>
-        <servlet-name>Hosting_Default</servlet-name>
-        <!-- source: pattern://f03382307f2e35b70d181f0e -->
-        <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
-    </servlet>
     <!-- source: pattern://8a4997cddc02803b920c8ee9 -->
     <servlet>
         <servlet-name>Hosting_New_Hosting_Service</servlet-name>
@@ -417,26 +294,20 @@
             <param-value>/nevislogrend</param-value>
         </init-param>
     </servlet>
+    <servlet>
+        <servlet-name>Hosting_Default</servlet-name>
+        <servlet-class>ch::nevis::isiweb4::servlet::defaults::DefaultServlet</servlet-class>
+    </servlet>
     <!-- source: pattern://8a4997cddc02803b920c8ee9 -->
     <servlet-mapping>
         <servlet-name>Hosting_New_Hosting_Service</servlet-name>
         <url-pattern>/*</url-pattern>
     </servlet-mapping>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <servlet-mapping>
-        <servlet-name>Hosting_Default</servlet-name>
-        <url-pattern>/asdf/*</url-pattern>
-    </servlet-mapping>
     <!-- source: pattern://7dc20659babc66c4401ce0dd -->
     <servlet-mapping>
         <servlet-name>NevisLogrendConnector_nli</servlet-name>
         <url-pattern>/nevislogrend/*</url-pattern>
     </servlet-mapping>
-    <!-- source: pattern://f03382307f2e35b70d181f0e -->
-    <servlet-mapping>
-        <servlet-name>Hosting_Default</servlet-name>
-        <url-pattern>/qwert/*</url-pattern>
-    </servlet-mapping>
     <servlet-mapping>
         <servlet-name>Hosting_Default</servlet-name>
         <url-pattern>/index.html</url-pattern>