Curity Changelog RSS Feed

ui-kit 1.3.0

Thu, 11 Jun 2026 10:12:00 GMT

Curity 11.3.0 UI Kit Previewer 1.3.0.

Curity Identity Server 11.0.4

Wed, 03 Jun 2026 00:00:00 GMT

Curity Identity Server 11.1.2

Wed, 03 Jun 2026 00:00:00 GMT

Curity Identity Server 11.2.2

Wed, 03 Jun 2026 00:00:00 GMT

Curity Identity Server 10.5.3

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.0.5

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.7.6

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.6.4

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.3.3

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.2.4

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.4.5

Tue, 02 Jun 2026 00:00:00 GMT

Curity Identity Server 10.1.3

Tue, 02 Jun 2026 00:00:00 GMT

idsvr-helm idsvr-0.13.23

Mon, 01 Jun 2026 09:54:00 GMT

- Added support for database schema management #123 - Added containerSecurityContext support for all workloadssecurity context #120

Curity Identity Server 11.2.1

Tue, 26 May 2026 00:00:00 GMT

idsvr-helm idsvr-0.13.22

Thu, 21 May 2026 09:36:00 GMT

Fix regression on scripts used on Jobs that talk to the k8s API

idsvr-helm idsvr-0.13.21

Wed, 20 May 2026 14:04:00 GMT

- [Don't log successful k8s API response bodies](https://github.com/curityio/idsvr-helm/commit/b18aceeb5d9e357c16eea4d53e2e5b4204ee8ace)

ui-kit 1.2.0

Fri, 08 May 2026 07:21:00 GMT

Curity 11.2.0 UI Kit Previewer 1.2.0.

oauth-tools 4.2.1

Wed, 06 May 2026 00:00:00 GMT

[OT-209] Fix a bug that causes a crash when no scope are requested but the AS returns an ID Token that has no signature

idsvr-helm idsvr-0.13.20

Mon, 04 May 2026 10:34:00 GMT

- #115 add flag to disable the cluster config generation Job - #111 allow to configure tolerations, nodeSelector and affinity per deployment - #114 Added option to toggle deployment of admin pod and related services - Updated Version of Curity Identity Server to 11.2

Curity Identity Server 11.2.0

Mon, 04 May 2026 00:00:00 GMT

New Token Issuance Authorizers plugin type for fine-grained scope authorization Redesigned Profiles page in the Admin UI with table view, search, and filtering Major BankID authenticator improvements with Backend Return URL support Enhanced delegation and token revocation when clients are revoked or deleted Front-Channel Logout support in the Self-Service Portal

haapi-android-sdk 5.4.0

Mon, 04 May 2026 00:00:00 GMT

Properties.Polling model exposes an optional interval property containing the server-provided polling cadence in milliseconds. When provided by the server, this value represents the per-step polling interval that overrides client-side defaults. [HSA-436]

haapi-android-ui 5.4.0

Mon, 04 May 2026 00:00:00 GMT

Added the HaapiUI Previewer — a debug-only tool to iterate on Theme.Haapi.Ui.Widget.BaseTheme attributes without building or running a full HAAPI flow. Two complementary mechanisms:Compose @Preview via HaapiUIPreviewer — renders themed screen layouts (Form, Selector, Polling, BankID, Problem, Generic, WebAuthn) and component galleries (buttons, message views, inputs, checkboxes, headers, links, loading indicators, spinners, expandable info, snackbars) directly in Android Studio's preview pane. Ideal for rapid in-IDE iteration.On-device previewer Activity via HaapiUIPreviewerHostActivity — launched from HaapiUIPreviewerScenarioListActivity or with a custom JSON fixture; runs real Fragments through the production pipeline for full-fidelity theme validation before shipping.Previewer code lives in the widget's src/debug/ source set and is excluded from release AARs. Public types are marked @ExperimentalHaapiApi and may change in minor releases. [HSA-403] [HSA-439] Compose @Preview via HaapiUIPreviewer — renders themed screen layouts (Form, Selector, Polling, BankID, Problem, Generic, WebAuthn) and component galleries (buttons, message views, inputs, checkboxes, headers, links, loading indicators, spinners, expandable info, snackbars) directly in Android Studio's preview pane. Ideal for rapid in-IDE iteration. On-device previewer Activity via HaapiUIPreviewerHostActivity — launched from HaapiUIPreviewerScenarioListActivity or with a custom JSON fixture; runs real Fragments through the production pipeline for full-fidelity theme validation before shipping. Previewer code lives in the widget's src/debug/ source set and is excluded from release AARs. Public types are marked @ExperimentalHaapiApi and may change in minor releases. [HSA-403] [HSA-439] Added support for userCode messages to render recovery codes in a themed 2-column grid with explicit copy action. [HSA-423]

haapi-data-model 1.6.0

Mon, 04 May 2026 00:00:00 GMT

Add interval field to Polling Properties.

haapi-ios-driver 5.4.0

Mon, 04 May 2026 00:00:00 GMT

The framework now internally manages the DPoP nonce lifecycle. The dpopNonce parameter on HaapiTokenManager.getHaapiTokenAsync(forceFresh:dpopNonce:) and related methods is deprecated. Callers no longer need to track and pass the nonce. [HSI-478]

haapi-ios-ui-kit 5.4.0

Mon, 04 May 2026 00:00:00 GMT

Added a DEBUG-only UI preview feature (HaapiUIPreviewer) which renders the framework supported UI layouts, component galleries, embedded diagnostics overlay. Allows for quick iterations over UI theming customization directly in Xcode IDE. This feature is marked as experimental and may receive breaking changes in minor releases. [HSI-451] New userCode message style for MessageView, used to display recovery codes in a 2-column monospace grid. A "Copy codes" button is shown within the container — tapping it copies all codes to the clipboard immediately. Adds MessageStyleAttribute.usercode to the public API and the MessageView.UserCode theming key. [HSI-476]

sso-revocation-plugins 0.1.1

Thu, 16 Apr 2026 08:43:00 GMT

### Bug Fixes * Add plugin icons ([b2752a7](https://github.com/curityio/sso-revocation-plugins/commit/b2752a737a53c1b695cfec98090319712ad23244))

sso-revocation-plugins 0.1.0

Wed, 15 Apr 2026 05:56:00 GMT

### Features * add SSO session revocation management plugins ([cbd9e10](https://github.com/Curity-PS/sso-revocation-plugins/commit/cbd9e10a85f5227979c723a0ad2f080ad58b946d))

Curity Identity Server 10.7.5

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.0.4

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 11.0.3

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.3.2

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.2.3

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 11.1.1

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.1.2

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.4.4

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.5.2

Tue, 31 Mar 2026 00:00:00 GMT

Curity Identity Server 10.6.3

Tue, 31 Mar 2026 00:00:00 GMT

ui-kit 1.1.0

Mon, 23 Mar 2026 13:41:00 GMT

Curity 11.1.0 UI Kit Previewer 1.1.0.

idsvr-helm idsvr-0.13.19

Mon, 23 Mar 2026 13:38:00 GMT

Updated Version of Curity Identity Server to 11.1

Curity Identity Server 11.1.0

Mon, 23 Mar 2026 00:00:00 GMT

haapi-android-sdk 5.3.0

Mon, 23 Mar 2026 00:00:00 GMT

Optional minLength and maxLength properties are added to FormField.Text, FormField.Username and FormField.Password which convey information about a Form TextField's character input requirements. [HSA-419]

haapi-android-ui 5.3.0

Mon, 23 Mar 2026 00:00:00 GMT

BankIdFragment updated to align with the latest accessibility requirements. [HSA-414]Added BankIdModel to support the new BankID flow. Added BankIdModel to support the new BankID flow. Added representationType property to public UI model flow interfaces. UIModel.Interaction, UIModel.Problem, and UIModel.Operation now expose the HAAPI response type that produced the UI model. [HSA-408]Custom implementations can optionally override representationType. Custom implementations can optionally override representationType. Added InteractionValue interface to represent an interactive item that contains a value (String). [HSA-408]Exposes an isRequired property indicating whether a form field value is required. The default value is true, but custom implementations can override it to indicate whether the field is optional. Exposes an isRequired property indicating whether a form field value is required. The default value is true, but custom implementations can override it to indicate whether the field is optional. Added InteractionError interface to represent an interactive item that contains an error. [HSA-408]

haapi-ios-driver 5.3.0

Mon, 23 Mar 2026 00:00:00 GMT

Improvements to the logging module provided by the framework. [HSI-353]Introduces log type hierarchy levels for simpler configuration.Deprecates static properties configuration isXXXEnabled in favor of setLogType() configuration method.See the upgrade guide section in the latest docs for migration details. Introduces log type hierarchy levels for simpler configuration. Deprecates static properties configuration isXXXEnabled in favor of setLogType() configuration method. See the upgrade guide section in the latest docs for migration details.

haapi-ios-sdk 5.3.0

Mon, 23 Mar 2026 00:00:00 GMT

PollingProperties exposes an optional interval property containing the server-provided polling cadence in milliseconds. [HSI-495]

haapi-ios-ui-kit 5.3.0

Mon, 23 Mar 2026 00:00:00 GMT

Added BankIdViewController, aligned with the latest bankID and accessibility requirements. [HSI-462]Added BankIdModel to support the new BankID flow Added BankIdModel to support the new BankID flow Added HaapiResponseTypeable protocol with representationType property. UIInteractionModel, UIProblemModel, and UIOperationModel now conform to this protocol, exposing the HAAPI response type that produced the UI model. [HSI-455]HaapiResponseTypeable protocol provides a default representationType of nil.Custom implementations of UIInteractionModel, UIProblemModel, and UIOperationModel can optionally override representationType. HaapiResponseTypeable protocol provides a default representationType of nil. Custom implementations of UIInteractionModel, UIProblemModel, and UIOperationModel can optionally override representationType. Added isRequired property to InteractionValueModel indicating whether a form field value is required. [HSI-455]InteractionValueModel protocol provides a default isRequired of false.Custom implementations (including InteractionItemInputTextModel, InteractionItemCheckboxModel, and InteractionItemSelectModel) can optionally override isRequired. InteractionValueModel protocol provides a default isRequired of false. Custom implementations (including InteractionItemInputTextModel, InteractionItemCheckboxModel, and InteractionItemSelectModel) can optionally override isRequired. Polling UI models now honor the optional server-provided polling interval from HAAPI responses. [HSI-495]

Curity Identity Server 10.0.3

Wed, 11 Mar 2026 00:00:00 GMT

Curity Identity Server 10.3.1

Wed, 11 Mar 2026 00:00:00 GMT

Curity Identity Server 10.5.1

Wed, 11 Mar 2026 00:00:00 GMT

Curity Identity Server 10.1.1

Wed, 11 Mar 2026 00:00:00 GMT

Curity Identity Server 10.4.3

Wed, 11 Mar 2026 00:00:00 GMT

Curity Identity Server 10.2.2

Wed, 11 Mar 2026 00:00:00 GMT

username-authenticator 1.4.5

Tue, 10 Mar 2026 09:48:00 GMT

Curity Identity Server 10.6.2

Tue, 10 Mar 2026 00:00:00 GMT

Curity Identity Server 11.0.2

Tue, 10 Mar 2026 00:00:00 GMT

Curity Identity Server 10.7.4

Tue, 10 Mar 2026 00:00:00 GMT

book-license-cli 2.0.0

Mon, 09 Mar 2026 18:27:00 GMT

Added new binaries with --azd and --user parameters

freja-eid-authenticator 4.1.4

Fri, 06 Mar 2026 11:08:00 GMT

### Bug Fixes * Fix CSS class on cancel button (#31)

freja-eid-authenticator 4.1.3

Thu, 05 Mar 2026 17:27:00 GMT

### Bug Fixes * Fix redirect URL for the wait handler ([#30](https://github.com/curityio/freja-eid-authenticator/commit/a2ec457a5a0ca1b3ef087d50cf0d321c0e83d454))

username-authenticator 1.4.4

Thu, 05 Mar 2026 15:59:00 GMT

Curity Identity Server 11.0.1

Tue, 03 Mar 2026 00:00:00 GMT

Curity Identity Server 10.7.3

Tue, 03 Mar 2026 00:00:00 GMT

The Encap Authenticator will be removed entirely due to the end of life of the Encap Server. The Credential Modes that don't support the new Credentials Table will be removed. More info here A new project for handling templates will be introduced which will be available in GitHub. The templating system will also use plain CSS instead of SCSS. Drop support for macOS intel architecture. Only macOS ARM architecture will be supported going forward.

idura-authenticator 2.0.0

Fri, 27 Feb 2026 08:38:00 GMT

Rename the plugin to Idura, as this the name of Criipto.

identity-picker 1.2.0

Tue, 24 Feb 2026 13:28:00 GMT

### Features * add icon ([611b4e0](https://github.com/curityio/identity-picker/commit/611b4e06ca890e6120facaa3b8ee926ff662757a))

github-authenticator 1.6.0

Mon, 23 Feb 2026 15:40:00 GMT

### Bug Fixes * update dependencies ([3a69df6](https://github.com/curityio/github-authenticator/commit/3a69df6dd80a9afaf347fdfda4ae4f11c8a57ab1)) ### Features * added icon ([985a600](https://github.com/curityio/github-authenticator/commit/985a600cd348215dc9ca73bd24fc9669dc2d07f0))

Curity Identity Server 10.7.2

Thu, 12 Feb 2026 00:00:00 GMT

idsvr-helm idsvr-0.13.18

Wed, 11 Feb 2026 17:02:00 GMT

Updated Version of Curity Identity Server to 11.0

Curity Identity Server 11.0.0

Wed, 11 Feb 2026 00:00:00 GMT

Ephemeral Clients with support for the Client Identity Metadata Document (CIMD) specification Managed Database Schemas for simplified and future-proof data management SCIM Groups support powered by the new Entity Management subsystem New Curity UI Kit with consolidated GitHub project and React component library

ui-kit 1.0.0

Mon, 09 Feb 2026 14:51:00 GMT

Curity 11.0.0 UI Kit Previewer 1.0.0.

haapi-android-sdk 5.2.0

Mon, 09 Feb 2026 00:00:00 GMT

Properties.Polling model exposes maxWaitTime and maxWaitRemainingTime properties. [HSA-418] FormField model hierarchy exposes isRequired property indicating if a field is mandatory. [HSA-406]

haapi-android-ui 5.2.0

Mon, 09 Feb 2026 00:00:00 GMT

Prevented polling from being cancelled when an Intent is triggered. [HSA-421] Prevented crashes during polling transitions. [HSA-420]

haapi-data-model 1.5.0

Mon, 09 Feb 2026 00:00:00 GMT

Add new fields (minLength and maxLength) to Form Fields of type text.

haapi-ios-sdk 5.2.0

Mon, 09 Feb 2026 00:00:00 GMT

PollingProperties model exposes maxWaitTime and maxWaitRemainingTime properties. [HSI-466] FormField model hierarchy exposes isRequired property indicating if a field is mandatory. [HSI-454] TextLengthRestriction model protocol is added to convey information about a Form TextField's character input requirements. [HSI-474]

haapi-ios-ui-kit 5.2.0

Mon, 09 Feb 2026 00:00:00 GMT

Sets the correct open visibility modifier for the preSubmit hook method in BaseViewController allowing for its override when extending from the class. [HSI-473] Closing an authentication flow and canceling the action keeps the flow active. [HSI-470]

nonce-authenticator 1.0.1

Thu, 05 Feb 2026 08:38:00 GMT

### Features * add icon ([f0051a3](https://github.com/curityio/nonce-authenticator/commit/f0051a33dac26ec5fae8e978eafc5c2f36bd7977))

username-password-authenticator 4.2.1

Thu, 05 Feb 2026 08:38:00 GMT

### Bug Fixes * missing attribute id when activating the account ([4564292](https://github.com/curityio/username-password-authenticator/commit/45642926c2c74808cac8c409b3feceef547137da)) ### Features * add icon ([3affa44](https://github.com/curityio/username-password-authenticator/commit/3affa443bc038d32760bda81e376afa19f2e8302))

freja-eid-authenticator 4.1.2

Thu, 05 Feb 2026 08:37:00 GMT

### Bug Fixes * add icon for backchannel plugin ([#29](https://github.com/curityio/freja-eid-authenticator/issues/29)) ([9f53b30](https://github.com/curityio/freja-eid-authenticator/commit/9f53b305a9386ffcb947857b1d996e4688b20425))

access-token-authenticator 1.0.3

Tue, 03 Feb 2026 15:48:00 GMT

entrust-idaas 1.1.1

Thu, 29 Jan 2026 15:45:00 GMT

### Features * add icon for authenticator ([c57b5d7](https://github.com/curityio/entrust-idaas/commit/c57b5d7a1dafd61b11cd641c3fa3bead2e312210))

username-authenticator 1.4.3

Thu, 29 Jan 2026 15:34:00 GMT

debug-attribute-action 1.4.3

Thu, 29 Jan 2026 15:23:00 GMT

freja-eid-authenticator 4.1.1

Thu, 29 Jan 2026 15:18:00 GMT

lookup-account-auth-action 1.1.1

Thu, 29 Jan 2026 15:15:00 GMT

netid-authenticator 1.3.1

Thu, 29 Jan 2026 15:05:00 GMT

### Features * add icon ([1746e39](https://github.com/curityio/netid-authenticator/commit/1746e39643d7d9985eb09ec21dca1636f29273c3))

time-authentication-action 3.0.1

Thu, 29 Jan 2026 14:50:00 GMT

twitter-authenticator 2.0.1

Thu, 29 Jan 2026 11:18:00 GMT

idsvr-helm idsvr-0.13.17

Wed, 28 Jan 2026 09:49:00 GMT

Updated the placeholder of convert KS secret

freja-eid-authenticator 4.1.0

Fri, 23 Jan 2026 15:00:00 GMT

Support for SSN.

Curity Identity Server 10.7.1

Fri, 19 Dec 2025 00:00:00 GMT

idsvr-helm idsvr-0.13.16

Mon, 15 Dec 2025 11:31:00 GMT

- jobs: `autoMountServiceAccountToken: false` + configurability - Updated Version of Curity Identity Server to 10.7

Curity Identity Server 10.7.0

Mon, 15 Dec 2025 00:00:00 GMT

New Documentation System with improved structure and usability Enhanced HAAPI support for optional fields across authentication flows Expanded SAML IDP capabilities with database-backed service providers Improved Admin and DevOps UI usability and reliability Additional security, scalability, and system-level improvements

haapi-android-sdk 5.1.0

Mon, 15 Dec 2025 00:00:00 GMT

HaapiAccessorFactory.createForHaapi and HaapiAccessorFactory.createForOAuth are added. [HSA-299]

haapi-android-ui 5.1.0

Mon, 15 Dec 2025 00:00:00 GMT

A new case TooManyAttempts is added to the enum HandleableProblemType, which could potentially cause a breaking change if this enum is used explicitly in the client app's code. setUsePasskeysBrowserFallback is a new configuration option in WidgetConfiguration.Builder. It lets you define how the app should behave when Passkeys are not supported on the device. [HSA-326]

haapi-data-model 1.4.0

Mon, 15 Dec 2025 00:00:00 GMT

Add new fields (maxWaitTime and maxWaitRemainingTime) to Polling Properties. Add support for optional form fields.

haapi-ios-sdk 5.1.0

Mon, 15 Dec 2025 00:00:00 GMT

HaapiAccessorBuilder now provides use case specific buildFor... methods to instantiate an accessor specific to perform an Haapi authentication flow or OAuth token management operations. [HSI-448] WebAuthnRegistrationClientOperationActionModel parses cross-platform AuthenticatorSelection residentKey configuration value from server responses. [HSI-453]

haapi-ios-ui-kit 5.1.0

Mon, 15 Dec 2025 00:00:00 GMT

setUsePasskeysBrowserFallback is a new configuration option in HaapiUIKitConfigurationBuilder. It lets you define how the app should behave when Passkeys are not supported on the device. [HSI-269] A new case tooManyAttemptsProblem is added to the enum HandleableProblemType, which could potentially cause a breaking change if this enum is used explicitly in the client app's code. [HSI-445]

idsvr-helm idsvr-0.13.15

Fri, 05 Dec 2025 10:34:00 GMT

Fix convertKeystore-conf.yaml #106

Curity Identity Server 10.6.1

Mon, 10 Nov 2025 00:00:00 GMT

curity-maven-gh-action v1

Wed, 05 Nov 2025 17:27:00 GMT

idsvr-helm idsvr-0.13.14

Mon, 03 Nov 2025 13:25:00 GMT

Updated Version of Curity Identity Server to 10.6

Curity Identity Server 10.6.0

Mon, 03 Nov 2025 00:00:00 GMT

New cookie consent configuration with opt-in for non-essential cookies Request Validation UI in Authentication Actions Swift Strict Concurrency support in the HAAPI iOS SDK Support for AmazonLinux Docker images Enhanced SAML IDP compliance and reliability

haapi-android-sdk 5.0.0

Mon, 03 Nov 2025 00:00:00 GMT

ErrorTokenResponse complies to RFC6749. [HSA-356]errorDescription field is optionaloptional errorUri field is added errorDescription field is optional optional errorUri field is added

haapi-android-ui 5.0.0

Mon, 03 Nov 2025 00:00:00 GMT

The optional errorUri field is added to Oauthmodel.Error. [HSA-356]

haapi-ios-driver 5.0.0

Mon, 03 Nov 2025 00:00:00 GMT

HaapiTokenManagerBuilder.setApplicationBundle is deprecated and replaced with HaapiTokenManagerBuilder.setRiskAssessmentConfiguration for advanced customization options. [HSI-399] The framework is configured with Strict Concurrency Checking set to Complete. [HSI-376] The framework ships with Default Actor Isolation set as NonIsolated and Approachable Concurrency enabled. [HSI-443] HaapiTokenManager.getAsyncHaapiToken(forceFresh: _, dpopNonce: _) is added. [HSI-409] HaapiTokenManager now exposes async api for a modern use of Swift’s Async/Await programming model. [HSI-409]

haapi-ios-sdk 5.0.0

Mon, 03 Nov 2025 00:00:00 GMT

Action is now exposed as a protocol. Implementing classes are maintained. [HSI-419] FormField is now exposed as a protocol. Implementing classes are maintained. [HSI-420] ClientOperationActionModel hierarchy is now exposed as a protocol composition ClientOperationActionModelRepresentation. Implementing classes/structs are maintained. [HSI-422] The framework is configured with Strict Concurrency Checking set to Complete. [HSI-376] The framework ships with Default Actor Isolation set as NonIsolated and Approachable Concurrency enabled. [HSI-443] ErrorTokenResponse complies to RFC-6749. [HSI-291]error_description is optional.error_uri, an optional parameter is added. error_description is optional. error_uri, an optional parameter is added.

haapi-ios-ui-kit 5.0.0

Mon, 03 Nov 2025 00:00:00 GMT

@MainActor is explicitely mentioned for the specific properties for the following protocols: InteractionErrorModel, InteractionValueModel, InteractionItemSelectModel and InteractionItemCheckboxModel HaapiFlowViewModel functions such as start, submit and followLink are asynchronous functions. [HSI-425] The framework is configured with Strict Concurrency Checking set to Complete. [HSI-376] The framework ships with Default Actor Isolation set as NonIsolated and Approachable Concurrency enabled. [HSI-443] OAuthErrorModel is aligned with ErrorTokenResponse. [HSI-291]

nonce-authenticator 1.1.0

Fri, 31 Oct 2025 11:22:00 GMT

idsvr-helm idsvr-0.13.13

Wed, 15 Oct 2025 11:20:00 GMT

## What's Changed * Tolerations for Jobs by @felfa01 in https://github.com/curityio/idsvr-helm/pull/102

idsvr-helm idsvr-0.13.12

Mon, 22 Sep 2025 09:05:00 GMT

Updated version of Curity Identity Server to 10.5

Curity Identity Server 10.5.0

Mon, 22 Sep 2025 00:00:00 GMT

Configurable Denial of Service (DoS) Protection with built-in safeguards New SAML Account Manager Attribute Provider for retrieving account data Expanded OAuth and OpenID Connect support with Token Exchange grant type Enhanced GraphQL Security Controls and event publishing Admin Web UI Enhancements to Look and Feel editor and Application pages

idsvr-helm idsvr-0.13.11

Fri, 05 Sep 2025 15:39:00 GMT

Updated Version of Curity Identity server to 10.4.2

Curity Identity Server 10.4.2

Fri, 05 Sep 2025 00:00:00 GMT

idsvr-helm idsvr-0.13.10

Tue, 26 Aug 2025 17:47:00 GMT

Updated Version of Curity Identity server to 10.4.1

Curity Identity Server 10.4.1

Tue, 26 Aug 2025 00:00:00 GMT

identity-picker 1.1.0

Wed, 20 Aug 2025 15:00:00 GMT

### Features * Add configuration to keep the attributes ([d50a64b](https://github.com/curityio/identity-picker/commit/d50a64b8749ebb3731bebc9fa0c63b4a18d38760)) * Converted to a gradle build and upgraded versions ([fdff1d7](https://github.com/curityio/identity-picker/commit/fdff1d777c4c3c5a6d1be339694e61a723135a74))

tyk-phantom-token-plugin 1.0.0

Mon, 18 Aug 2025 18:50:00 GMT

Initial code release

idsvr-helm idsvr-0.13.9

Mon, 11 Aug 2025 09:31:00 GMT

Updated Version of Curity Identity server to 10.4.0

Curity Identity Server 10.4.0

Mon, 11 Aug 2025 00:00:00 GMT

New Self-Service Portal for user account management New SAML Identity Provider profile New Device Management GraphQL API New user interface for the Look and Feel editor in the Admin UI

idsvr-helm idsvr-0.13.8

Mon, 16 Jun 2025 09:16:00 GMT

Updated Version of Curity Identity server to 10.3.0

Curity Identity Server 10.3.0

Mon, 16 Jun 2025 00:00:00 GMT

New throttler service Improved parameter options in JSON data source New symbols in login pages

haapi-ios-sdk 4.7.0

Mon, 16 Jun 2025 00:00:00 GMT

HaapiConfigurable.applicationBundle is replaced with HaapiConfigurable.riskAssessmentConfiguration for advanced customization options. [HSI-399]

haapi-ios-ui-kit 4.7.0

Mon, 16 Jun 2025 00:00:00 GMT

Webauthn registration additional actions are handled and presented to the user. [HSI-381]When registering a cross-platform device using the Webauthn authenticator, it is possible to ask the user to register an additional platform device. When registering a cross-platform device using the Webauthn authenticator, it is possible to ask the user to register an additional platform device.

haapi-android-ui 4.5.1

Sun, 15 Jun 2025 00:00:00 GMT

Improvements to the Webauthn/Passkeys flow handling. [HSA-385]

deny-authentication-action-with-dynamic-message 1.0.0

Wed, 28 May 2025 08:32:00 GMT

nginx_oauth_proxy_module 1.6.0

Thu, 22 May 2025 13:29:00 GMT

Built modules for new NGINX versions R33 (1.27.2) and R34 (1.27.4)

nginx_phantom_token_module 2.0.0

Thu, 22 May 2025 13:24:00 GMT

New NGINX versions R33 (1.27.2) and R34 (1.27.4). Introspection header interface changes to prevent header removal when headers span multiple buffers.

Curity Identity Server 9.7.2

Wed, 21 May 2025 00:00:00 GMT

haapi-ios-sdk 4.6.1

Fri, 16 May 2025 00:00:00 GMT

Regression where some special characters in input values sent to the server were not being encoded correctly. [HSI-391]

idsvr-helm idsvr-0.13.7

Thu, 08 May 2025 14:50:00 GMT

Updated Version of Curity Identity server to 10.2.1

Curity Identity Server 10.2.1

Thu, 08 May 2025 00:00:00 GMT

idsvr-helm idsvr-0.13.6

Mon, 05 May 2025 13:22:00 GMT

Updated Version of Curity Identity server to 10.2.0

Curity Identity Server 10.2.0

Mon, 05 May 2025 00:00:00 GMT

haapi-android-ui 4.5.0

Mon, 05 May 2025 00:00:00 GMT

Webauthn registration additional actions are handled and presented to the user. [HSA-382]When registering a cross-platform device using the Webauthn authenticator, it is possible to ask the user to register an additional platform device. When registering a cross-platform device using the Webauthn authenticator, it is possible to ask the user to register an additional platform device.

haapi-ios-driver 4.6.0

Mon, 05 May 2025 00:00:00 GMT

Regression on attestation state management that would clear attestation data when HaapiTokenManager.clearState is invoked. [HSI-386]

haapi-ios-sdk 4.6.0

Mon, 05 May 2025 00:00:00 GMT

HaapiAccessorBuilder's attestation validation keyName can be configured. [HSI-379] DCRConfiguration can be configured with a Storage. [HSI-378]

haapi-ios-ui-kit 4.6.0

Mon, 05 May 2025 00:00:00 GMT

HaapiUIKitConfiguration can be configured to clear an existing DCR client. [HSI-378]

book-license-cli 1.0.1

Wed, 02 Apr 2025 09:42:00 GMT

Initial release

idsvr-helm idsvr-0.13.5

Mon, 24 Mar 2025 10:07:00 GMT

Updated Version of Curity Identity server to 10.1.0

Curity Identity Server 10.1.0

Mon, 24 Mar 2025 00:00:00 GMT

Multiple themes in UI designer iOS UI SDK extensibility improvements Password policy dictionary check

haapi-android-sdk 4.4.0

Mon, 24 Mar 2025 00:00:00 GMT

Adds documentation on cookie management for long lived client-server interactions. [HSA-359] Support for Discoverable Credentials mode setting when enabled in the server PassKeys authenticator. [HSA-349]Full support for Passkeys functionality requires Android 9+ and logged in Google Account on the device.It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0). Full support for Passkeys functionality requires Android 9+ and logged in Google Account on the device. It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0).

haapi-android-ui 4.4.0

Mon, 24 Mar 2025 00:00:00 GMT

Adds documentation on cookie management for long lived client-server interactions. [HSA-359] Improved support for native WebAuthn and Passkeys authentication flows. [HSA-349] Support for Discoverable Credentials mode setting when enabled in the server PassKeys authenticator. [HSA-349]Full support for Passkeys functionality requires Android 9+ and logged in Google Account on the device.It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0). Full support for Passkeys functionality requires Android 9+ and logged in Google Account on the device. It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0).

haapi-ios-sdk 4.5.0

Mon, 24 Mar 2025 00:00:00 GMT

HaapiAccessorBuilder accessor creation use case where DCR would trigger incorrectly and cause the OAuthTokenManager to use an incorrect configuration when trying to refresh tokens. [HSI-374]

haapi-ios-ui-kit 4.5.0

Mon, 24 Mar 2025 00:00:00 GMT

Handle link models with rel set as download by triggering the external browser. [HSI-258] Passkey creation success displays a user feedback notification. [HSI-319]Adds new NotificationBannerView Success style variation to theme configuration. [HSI-319] Adds new NotificationBannerView Success style variation to theme configuration. [HSI-319] IdsvrHaapiUIKit UI customization [HSI-236]HAAPI UI framework models are published and made available for customization. [HSI-238]Experimental support for custom UI models mapping extensibility is available via DataMapperBuilder. [HSI-238]Experimental support for customization of the UI and its behavior is available via ViewControllerFactoryRegistry. [HSI-237] HAAPI UI framework models are published and made available for customization. [HSI-238] Experimental support for custom UI models mapping extensibility is available via DataMapperBuilder. [HSI-238] Experimental support for customization of the UI and its behavior is available via ViewControllerFactoryRegistry. [HSI-237]

idsvr-helm idsvr-0.13.4

Wed, 05 Mar 2025 09:57:00 GMT

Updated Version of Curity Identity server to 10.0.2

Curity Identity Server 10.0.2

Wed, 05 Mar 2025 00:00:00 GMT

Curity Identity Server 9.7.1

Wed, 05 Mar 2025 00:00:00 GMT

idsvr-helm idsvr-0.13.3

Fri, 14 Feb 2025 13:23:00 GMT

- Updated version of Curity Identity Server to 10.0.1 - Enable an API gateway to call the Admin UI port in the networkPolicy

Curity Identity Server 10.0.1

Fri, 14 Feb 2025 00:00:00 GMT

idsvr-helm idsvr-0.13.2

Mon, 10 Feb 2025 18:21:00 GMT

Updated Version of Curity Identity server to 10.0.0

Curity Identity Server 10.0.0

Mon, 10 Feb 2025 00:00:00 GMT

OpenTelemetry New data source: MongoDB Applications in the SDK Authorized Grants GraphQL API New throttling framework for sending emails

haapi-ios-sdk 4.4.1

Fri, 24 Jan 2025 00:00:00 GMT

IdsvrHaapiSdkTestUtils are added to the internal package to expose a way to help developers create conditions that allow testing the framework's behaviour and its integration with client applications. [HSI-351] RawJsonRepresentable protocol conformance is added to HaapiRepresentation and ProblemRepresentation models to provide a consistent JSON representation across platforms. [HSI-343]

idsvr-helm idsvr-0.13.1

Mon, 20 Jan 2025 13:18:00 GMT

Fix cluster-conf-xml for non persistent config

oauth-tools 4.2.0

Thu, 09 Jan 2025 00:00:00 GMT

[OT-135] Add support for Ed25519 algorithm [OT-208] Add support for PS512 algorithm [OT-207] Fixed an issue that caused JWT validation to not work properly

idsvr-helm idsvr-0.13.0

Mon, 16 Dec 2024 13:14:00 GMT

- Added the option for a peristed config volume - Added distributed service port in admin deployment and service - Updated version of Curity Identity Server to 9.7.0

Curity Identity Server 9.7.0

Mon, 16 Dec 2024 00:00:00 GMT

Brand new UI for editing authentication action workflows Multiple sign-up options in sign-up action Node metrics in the UI

haapi-android-sdk 4.3.0

Mon, 16 Dec 2024 00:00:00 GMT

Adds support for Risk Assessment data collection (ex: BankID's risk assessment functionality) by providing application context to the framework. [HSA-373]It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0). It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0). ClientAuthenticationMethod.MtlsKeyHash is a new configuration for MTLS that relies on hostnames/public hash keys. [HSA-363]

haapi-android-ui 4.3.0

Mon, 16 Dec 2024 00:00:00 GMT

haapi-ios-driver 4.4.0

Mon, 16 Dec 2024 00:00:00 GMT

ClientAuthenticationMethod can be configured in HaapiTokenManager via HaapiTokenManagerBuilder. [HSI-325] Adds support for Risk Assessment data collection (ex: BankID's risk assessment functionality) by providing application context to the framework. [HSI-349]It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0). It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0).

haapi-ios-sdk 4.4.0

Mon, 16 Dec 2024 00:00:00 GMT

A Client Authentication Method can be provided to the framework configuration, adding on security options enforcement. [HSI-321] A DCR fallback configuration can be provided to allow the framework to gracefully fallback when attestation errors occur or when the device doesn't support it. [HSI-324] HaapiAccessorBuilder can be used to configure and instantiate HaapiManager and OAuthTokenManager instances. [HSI-324]An HaapiManagerAccessor wrapper object containing the configured managers is returned.HaapiAccessorBuilder is the recommended way of creating instances of the managers (HaapiManager and OAuthTokenManager) to interact with Curity Identity Server. An HaapiManagerAccessor wrapper object containing the configured managers is returned. HaapiAccessorBuilder is the recommended way of creating instances of the managers (HaapiManager and OAuthTokenManager) to interact with Curity Identity Server. Adds support for Risk Assessment data collection (ex: BankID's risk assessment functionality) by providing application context to the framework. [HSI-349]It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0). It requires a version of the Curity Identity Server that accepts the risk assessment information (starting from 9.7.0).

haapi-ios-ui-kit 4.4.0

Mon, 16 Dec 2024 00:00:00 GMT

react-native-haapi-module v0.6.0

Mon, 25 Nov 2024 14:59:00 GMT

### Bug Fixes * Custom http headers and query parameters for ios ([#28](https://github.com/curityio/react-native-haapi-module/issues/28)) ([6a2344c](https://github.com/curityio/react-native-haapi-module/commit/6a2344cbf57e62984eddbe173020a8091e3409cc)) ### Features * Update to latest SDK versions ([4c525d4](https://github.com/curityio/react-native-haapi-module/commit/4c525d4707897535ce1cb47d7ad177a0f0a0e85e))

react-native-haapi-module v0.5.0

Mon, 25 Nov 2024 14:46:00 GMT

Support for passkeys for both Android and iOS have been added. To make this possible, numerous action has been taken on the codebase. **SDK version has been pinned to 4.1.x** Previous releases did not pin the version on iOS, and android was using 4.0. If you experiencing differences with this update, please refer to the SDK changelogs: https://curity.io/docs/haapi-android-sdk/latest/CHANGELOG.html https://curity.io/docs/haapi-ios-sdk/latest/CHANGELOG.html **Multiple new events** * RegistrationStep * WebAuthnAuthenticationStep * WebAuthnUserCancelled * WebAuthnAuthenticationFailed * WebAuthnRegistrationFailed * WebAuthnRegistrationFailedKeyRegistered * HaapiLoading * HaapiFinishedLoading * LoggedOut * UnknownResponse See README for documentation on new events

react-native-haapi-module v0.4.13

Tue, 19 Nov 2024 15:33:00 GMT

* The iOS module was dependant on the `start` method being called every time the module was loaded. This made it hard to keep an application state between app starts. This dependency is now removed, so that methods like `refreshToken` works without the `start` method being called first. * The podspec is updated to pin a specific HAAPI SDK version.

idsvr-helm idsvr-0.12.31

Mon, 04 Nov 2024 13:24:00 GMT

- Updated version of Curity Identity Server to 9.6.0 - Add tlsEnabled flag for ingress TLS handling fixing #81 - Use node selectors in cluster-conf-job and convertKeystore

Curity Identity Server 9.6.0

Mon, 04 Nov 2024 00:00:00 GMT

Automatic credential migration during authentication Automatic credential re-hashing during authentication Credential policies for DynamoDB

haapi-ios-driver 4.3.0

Mon, 14 Oct 2024 00:00:00 GMT

HaapiError conforms to IdsvrError protocol which provides additional metadata about the errors. [HSI-335]

haapi-ios-sdk 4.3.0

Mon, 14 Oct 2024 00:00:00 GMT

Support for Discoverable Credentials mode when enabled in the server PassKeys authenticator. [HSI-281]Full support for Passkeys functionality requires iOS 16 and iCloud Keychain enabled on the devices.It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0). Full support for Passkeys functionality requires iOS 16 and iCloud Keychain enabled on the devices. It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0). More logs related to revocation in OAuthTokenManager and when storing the DPoP. [HSI-327]

haapi-ios-ui-kit 4.3.0

Mon, 14 Oct 2024 00:00:00 GMT

Support for Discoverable Credentials mode setting when enabled in the server PassKeys authenticator. [HSI-281] Full support for Passkeys functionality requires iOS 16 and iClould Keychain enabled on the devices. It requires a version of the Curity Identity Server that supports PassKeys Discoverable Credentials (starting from 9.3.0). HaapiUIKitError conforms to IdsvrError protocol which provides additional metadata about the errors. [HSI-335]

idsvr-helm idsvr-0.12.30

Mon, 23 Sep 2024 18:11:00 GMT

Added curity.admin.serviceAccount.name configuration setting

idsvr-helm idsvr-0.12.29

Mon, 23 Sep 2024 10:22:00 GMT

Updated version of Curity Identity Server to 9.5.0

Curity Identity Server 9.5.0

Mon, 23 Sep 2024 00:00:00 GMT

Token Handler support for NGINX Risk assessment using BankID

nginx_oauth_proxy_module 1.5.0

Fri, 06 Sep 2024 11:06:00 GMT

Builds for NGINX Plus R31 / 32

nginx_phantom_token_module 1.6.0

Wed, 04 Sep 2024 12:05:00 GMT

Builds for NGINX Plus R31 / 32

idsvr-helm idsvr-0.12.28

Mon, 12 Aug 2024 13:47:00 GMT

Updated version of Curity Identity Server to 9.4.0

Curity Identity Server 9.4.0

Mon, 12 Aug 2024 00:00:00 GMT

Selective disclosure credential support Artifact binding and encryption support for the SAML authenticator Token Handler support for OpenResty

haapi-android-sdk 4.2.1

Mon, 12 Aug 2024 00:00:00 GMT

OAuthTokenManager can take an optional Map of parameters to be added to the request body when invoking fetchAccessToken or refreshAccessToken. [HSA-352] OAuthTokenManager.TokenEndpointResponseListener can be configured in HaapiConfiguration to the token endpoint in OAuthTokenManager. [HSA-353]

haapi-android-ui 4.2.1

Mon, 12 Aug 2024 00:00:00 GMT

HaapiFlowViewModel can take an optional Map of parameters to be added to the request body when invoking fetchAccessToken or refreshAccessToken. [HSA-352] OAuthLifecycle can take an optional Map of parameters to be added to the request body when invoking refreshAccessToken. [HSA-352]

haapi-ios-sdk 4.2.1

Mon, 12 Aug 2024 00:00:00 GMT

OAuthTokenManager can take an optional dictionary of parameters to be added to the request body when invoking fetchAccessToken or refreshAccessToken. [HSI-286] OAuthTokenManager.TokenEndpointResponseListener can be configured in HaapiConfiguration to listen to the token endpoint in OAuthTokenManager. [HSI-287]

haapi-ios-ui-kit 4.2.1

Mon, 12 Aug 2024 00:00:00 GMT

HaapiFlowViewModel.refreshAccessToken and OAuthLifeCycle.refreshToken can take an optional dictionary of parameters to be added to the request body. [HSI-286] HaapiFlowViewModel can take an optional Map of parameters to be added to the request body when invoking fetchAccessToken or refreshAccessToken. [HSI-286] OAuthLifecycle can take an optional Map of parameters to be added to the request body when invoking refreshAccessToken. [HSI-286]

oauth-tools 3.6.0

Mon, 12 Aug 2024 00:00:00 GMT

[OT-117] Moved Dynamic Client Registration in its own flow [OT-164] Support the visualization of SD-JWT [OT-165] Support the request of credentials using the vc+sd-jwt format [OT-169] Align VCI support with the Implementors Draft 1 (ID-1) version of the OpenID4VCI spec

haapi-ios-driver 4.2.0

Mon, 05 Aug 2024 00:00:00 GMT

The version metadata exposed by the frameworks.

haapi-ios-sdk 4.2.0

Mon, 05 Aug 2024 00:00:00 GMT

The version metadata exposed by the frameworks.

haapi-ios-ui-kit 4.2.0

Mon, 05 Aug 2024 00:00:00 GMT

The version metadata exposed by the frameworks.

haapi-ios-driver 4.2.0-rc.1

Wed, 24 Jul 2024 00:00:00 GMT

CryptoKeyType, is an enum that can be used to configure TokenBoundConfiguration, it defines how the KeyPair is generated. [HSI-300] dpopProofFailure to HaapiError to provide errors for token bound related failures. [HSI-301]

haapi-ios-sdk 4.2.0-rc.1

Wed, 24 Jul 2024 00:00:00 GMT

HaapiConfiguration can be configured with TokenBoundConfiguration. [HSI-301] Dpop related errors that happen in OAuthTokenManager usage are exposed to the client application in HaapiError.dpopProofFailure. [HSI-301]

oauth-tools 3.5.2

Fri, 05 Jul 2024 00:00:00 GMT

[OT-168] Fixed an issued introduced in 3.5.1 that does not allow the application to start properly.

oauth-tools 3.5.1

Fri, 05 Jul 2024 00:00:00 GMT

[OT-158] Fixed an issue with the sidebar in the Call API flow [OT-159] Fixed an issue causing the scrollbar from main area to leaks into Claims modal [OT-160] Fixed an issue with the color scheme switcher [OT-166] Updated dependencies and released a new version to update Windows signing certificate [OT-167] Fixed an issue causing JWT tokens to not be copied when clicking the copy button

haapi-ios-driver 4.1.4

Fri, 28 Jun 2024 00:00:00 GMT

When DCError.invalidInput or DCError.invalidKey occurs, HaapiTokenManager restarts a complete flow by requesting a new challenge. [HSI-293] When DCError.unknownSystemFailure occurs, the attestation flow retries. [HSI-293]

haapi-ios-sdk 4.1.4

Fri, 28 Jun 2024 00:00:00 GMT

Error that would cause the framework to crash when receiving an OAuth Token error representation from the server with "Expose Detailed Error Messages" disabled in the Token Profile. [HSI-290]

idsvr-helm idsvr-0.12.27

Mon, 17 Jun 2024 11:11:00 GMT

Updated version of Curity Identity Server to 9.3.0

Curity Identity Server 9.3.0

Mon, 17 Jun 2024 00:00:00 GMT

Native support for the token handler pattern has been unveiled Multi-tenancy support is final (JDBC, JSON) Discoverable credentials for passkeys has been added

Curity Identity Server 8.0.1

Thu, 13 Jun 2024 00:00:00 GMT

haapi-ios-driver 4.1.3

Thu, 13 Jun 2024 00:00:00 GMT

Add missing public visibility for HaapiLogger.appendLogSink. [HSI-283]

Curity Identity Server 8.4.2

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 9.0.2

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.1.3

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.7.1

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 9.1.1

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.3.3

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.5.4

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.6.3

Wed, 12 Jun 2024 00:00:00 GMT

Curity Identity Server 8.2.2

Wed, 12 Jun 2024 00:00:00 GMT

idsvr-helm idsvr-0.12.26

Tue, 11 Jun 2024 17:33:00 GMT

Updated version of Curity Identity Server to 9.2.2

Curity Identity Server 9.2.2

Tue, 11 Jun 2024 00:00:00 GMT

haapi-ios-driver 4.1.2

Mon, 10 Jun 2024 00:00:00 GMT

HaapiLogger can be hooked up with a LogSink to export logs in a different channel. [HSI-283]

haapi-ios-sdk 4.1.2

Mon, 10 Jun 2024 00:00:00 GMT

ClientOperationActionModel has a new parameter: arguments. This parameter is present in the following subclasses: ExternalBrowserClientOperationActionModel, BankIdClientOperationActionModel, EncapAutoActivationClientOperationActionModel, WebAuthnRegistrationClientOperationActionModel, WebAuthnAuthenticationClientOperationActionModel and GenericClientOperationActionModel. [HSI-275] Aligning encoding format for Action, FormField and AuthenticatorSelctorStep with Android counterpart. [HSI-275] When using HaapiManager, Content-Type headers are omitted when the requests don't contain payload content (RFC9110). [HSI-279]

Curity Identity Server 9.2.1

Tue, 28 May 2024 00:00:00 GMT

Curity Identity Server 9.2.0

Mon, 06 May 2024 00:00:00 GMT

Extended, standardized token exchange support Updated multi-tenancy support (still experimental) Introduction of token handler service (experimental) Better customizability for user-facing screens in the HAAPI Android UI SDK

haapi-android-sdk 4.2.0

Mon, 06 May 2024 00:00:00 GMT

HaapiManager now provides utility methods that can parse HaapiResponses and TokenResponses for testing purposes. [HSA-281]

haapi-android-ui 4.2.0

Mon, 06 May 2024 00:00:00 GMT

HAAPI UI Widget UI customization [HSA-279]HAAPI UI Widget framework models are published and made available for customization. [HSA-281]Experimental support for custom UI Models mappings extensibility is available via DataMappersFactory. [HSA-281]Experimental support for custom fragments via FragmentResolver. [HSA-280] HAAPI UI Widget framework models are published and made available for customization. [HSA-281] Experimental support for custom UI Models mappings extensibility is available via DataMappersFactory. [HSA-281] Experimental support for custom fragments via FragmentResolver. [HSA-280]

Curity Identity Server 8.6.2

Wed, 17 Apr 2024 00:00:00 GMT

Curity Identity Server 9.1.0

Mon, 25 Mar 2024 00:00:00 GMT

Database clients in the Admin UI Account multi-tenancy support Sign-up action feature added Better feedback of password policy violations

haapi-android-sdk 4.1.0

Mon, 25 Mar 2024 00:00:00 GMT

When using HaapiManager, a HaapiManagerUnexpectedException can be thrown when an unexpected exception occurs that may be caused by javax.net.ssl.SSLProtocolException or java.io.IOException. [HSA-335]

haapi-android-ui 4.1.0

Mon, 25 Mar 2024 00:00:00 GMT

When BankId authenticator is used and the BankId application is not installed on the device, the Haapi flow is not interrupted. Instead, a view is presented. The view displays a QRCode that can be scanned by a device that has BankId .BankId v5 requires to have Generate Autostart Qr Code set to true.BankId v6 displays automatically the QRCode. BankId v5 requires to have Generate Autostart Qr Code set to true. BankId v6 displays automatically the QRCode. Improvements to the logging information provided by the framework. [HSA-298]Adds masking for Sensitive Data via configuration propertyAdds tags for Mapping and UI Component to facilitate tracing the logs. Adds masking for Sensitive Data via configuration property Adds tags for Mapping and UI Component to facilitate tracing the logs.

haapi-ios-ui-kit 4.1.1

Mon, 25 Mar 2024 00:00:00 GMT

Debug and info logs for traceability when using client operations such as BankId. [HSI-242]

oauth-tools 3.5.0

Wed, 13 Mar 2024 00:00:00 GMT

[OT-151] Dark mode is now available in OAuth.Tools [OT-132] The JWT Creation flow has been updated to be more interactive [OT-134] The JWT Creation flow now supports JWT types to help with optional or required claims for each type [OT-143] Added support for Rich Authorization Requests in Code flow and Hybrid flow [OT-155] Curity Playground workspace now includes Verifiable Credential Issuance demo flows [OT-129] Fixed an issue causing a scrollbar to appear above some modals [OT-146] Fixed an issue causing the app to crash when /callback/ was accessed without state [OT-152] Fixed an issue causing the scopes supported to not be visible nor editable in the workspace settings [OT-153] Fixed an issue causing the sidebar to not render properly in some flows

Curity Identity Server 9.0.1

Wed, 28 Feb 2024 00:00:00 GMT

haapi-ios-driver 4.1.0

Tue, 27 Feb 2024 00:00:00 GMT

An invalid_state does not occur when using different "clientIds" and HaapiTokenManagerBuilder.setName is not invoked. [HSI-270]

haapi-ios-sdk 4.1.0

Tue, 27 Feb 2024 00:00:00 GMT

Framework now provides a utility HaapiModel that exposes a model factory API to create model instances for testing purposes. [HSI-268] Framework models now conform to Codable to facilitate testing. [HSI-111]

Curity Identity Server 9.0.0

Mon, 12 Feb 2024 00:00:00 GMT

OpenID Wallet Authenticator Demo Wallet Password policies Java 21 DPoP-protected refresh tokens for HAAPI on Android

haapi-android-sdk 4.0.0

Mon, 12 Feb 2024 00:00:00 GMT

HaapiConfiguration can be configured with TokenBoundConfiguration. [HSA-289]OAuthTokenManager supports the server configuration issue-token-bound-authorization-code by using TokenBoundConfiguration. [HSA-289] OAuthTokenManager supports the server configuration issue-token-bound-authorization-code by using TokenBoundConfiguration. [HSA-289]

haapi-android-ui 4.0.0

Mon, 12 Feb 2024 00:00:00 GMT

WidgetConfiguration.Builder can be configured with TokenBoundConfiguration. [HSA-289]

haapi-ios-driver 4.0.0

Mon, 12 Feb 2024 00:00:00 GMT

HaapiTokenManager.getHaapiToken(forceFresh:dpopNonce:completionHandler:) and HaapiTokenManager.getHaapiTokenWithForceFresh:dpopNonce:completionHandler: are added to replace the deprecated/obsolete ones. [HSI-48]

oauth-tools 3.7.0

Sat, 10 Feb 2024 00:00:00 GMT

[OT-94] Allow to add extra parameters in most requests [OT-118] New flow for Dynamic Client Management (DCRM) [OT-175] New flow for OAuth2 Token Exchange Several minor corrections on flows Fixed the update notification in dark mode

azuread-multitenant-authenticator 1.0.0

Thu, 25 Jan 2024 08:41:00 GMT

First implemenetation of Azure Multitenant OIDC authenticator (Entra ID) Accepting logins for users that are part of any of the configured Tenant IDs

Curity Identity Server 8.7.0

Mon, 18 Dec 2023 00:00:00 GMT

Password policies DynamoDB support for database clients HAAPI passkey and WebAuthn support for Android

haapi-android-sdk 3.4.0

Mon, 18 Dec 2023 00:00:00 GMT

The model parsing for properties in Step and Action. [HSA-313]

haapi-android-ui 3.4.0

Mon, 18 Dec 2023 00:00:00 GMT

Support for native WebAuthn Authorization. [HSA-293]A new setting useNativeWebAuthnSupport in WidgetConfiguration allows to enable the native WebAuthn support behavior. It is currently an experimental feature.It requires a version of the Curity Identity Server that includes HAAPI support for WebAuthn on Android (starting from 8.7.0). A new setting useNativeWebAuthnSupport in WidgetConfiguration allows to enable the native WebAuthn support behavior. It is currently an experimental feature. It requires a version of the Curity Identity Server that includes HAAPI support for WebAuthn on Android (starting from 8.7.0). When user interaction is triggered on a QRCode image, it can open an installed application or an external browser. [HSA-309]

haapi-ios-driver 3.2.0

Mon, 18 Dec 2023 00:00:00 GMT

HaapiTokenManager and HaapiClient can return a Dpop to support this configuration issue-token-bound-authorization-code. [HSI-244]It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0). It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0).

haapi-ios-sdk 3.2.0

Mon, 18 Dec 2023 00:00:00 GMT

HaapiManager can return a Dpop to support this configuration issue-token-bound-authorization-code. [HSI-244]It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0). It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0).

haapi-ios-ui-kit 3.2.0

Mon, 18 Dec 2023 00:00:00 GMT

A message error mentioning the app scheme is shown when displaying an error for no alternative routes after trying to open an external application. [HSI-253] issue-token-bound-authorization-code is supported when using HaapiFlowViewModel or HaapiFlowViewController. [HSI-244]It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0). It requires a version of the Curity Identity Server that supports token binding (starting from 8.7.0).

Curity Identity Server 8.6.1

Mon, 13 Nov 2023 00:00:00 GMT

Curity Identity Server 8.6.0

Mon, 06 Nov 2023 00:00:00 GMT

Passkeys authenticator BankID v6 for consentors and new intent message support Improved endpoint editing for OAuth endpoints in the admin UI

haapi-android-sdk 3.3.0

Mon, 06 Nov 2023 00:00:00 GMT

Adds new buildParameters method in WebAuthnRegistrationClientOperationStep to fix operation submission parameters, deprecating the previous existing one. [HSA-292]

haapi-android-ui 3.3.0

Mon, 06 Nov 2023 00:00:00 GMT

A long press on a MessageView can copy the text to the clipboard manager. [HSA-196] A new setting useDefaultExternalBrowser in WidgetConfiguration allows to replace ChromeTab usage with the default external browser. [HSA-258] The username and password fields support autofill hints. [HSA-151]

haapi-ios-driver 3.1.0

Mon, 06 Nov 2023 00:00:00 GMT

The attestation key ID and the state from the last CAT request are not reset when HaapiTokenManager.clear is invoked. [HSI-231]

haapi-ios-sdk 3.1.0

Mon, 06 Nov 2023 00:00:00 GMT

The BankId url parameters duplication that causes the BankId app to trigger incorrectly. [HSI-243]

haapi-ios-ui-kit 3.1.0

Mon, 06 Nov 2023 00:00:00 GMT

Two new attributes are added to TextAppearance: kern and lineHeightMultiple. [HSI-216] A new HaapiFlowViewControllerRepresentable class that is safe to use with iOS 17. [HSI-229] A new AuthenticatorSelectionPresentation tabs has been added. [HSI-215] A long press on a MessageView can copy the text to the UIPasteboard. [HSI-233] A new setting useDefaultExternalBrowser in HaapiUIKitConfiguration allows to replace ASWebAuthenticationSession usage with the default external browser. [HSI-203] The username field supports autofill. [HSI-36] When user interaction is triggered on a QRCode image, it can open an installed application or an external browser. [HSI-235]

Curity Identity Server 8.5.3

Mon, 16 Oct 2023 00:00:00 GMT

Curity Identity Server 8.5.2

Wed, 11 Oct 2023 00:00:00 GMT

nginx_phantom_token_module 1.5.0

Thu, 28 Sep 2023 07:10:00 GMT

Builds for NGINX Plus R29 / 30, with new distros for Amazon 2023 and Debian 12

nginx_oauth_proxy_module 1.4.0

Thu, 28 Sep 2023 07:04:00 GMT

Builds for NGINX Plus R29 / 30, with new distros for Amazon 2023 and Debian 12

Curity Identity Server 8.5.1

Thu, 28 Sep 2023 00:00:00 GMT

Curity Identity Server 8.5.0

Mon, 25 Sep 2023 00:00:00 GMT

Action Bundles BankID v6 including new BankID back-channel authenticator for CIBA OAuth metadata

Curity Identity Server 8.4.1

Tue, 22 Aug 2023 00:00:00 GMT

Curity Identity Server 8.4.0

Mon, 14 Aug 2023 00:00:00 GMT

Database clients with GraphQL API and DevOps Dashboard support New iOS UI SDK for the Hypermedia Authentication API Custom procedures for the pre-authorized grant

haapi-android-sdk 3.2.0

Mon, 14 Aug 2023 00:00:00 GMT

HaapiConfiguration now provides a configuration property useAttestation to enable/disable key-attestation. [HSA-257]

haapi-android-ui 3.2.0

Mon, 14 Aug 2023 00:00:00 GMT

Internal model mappings improvements. [HSA-256] Automatic AccessToken fetch improvements. [HSA-252]

haapi-ios-driver 3.0.0

Mon, 14 Aug 2023 00:00:00 GMT

Configuration to set maximum allowed retries for HaapiTokenManager to retry attestation if a DCError.serverUnavailable occurs. [HSI-191]

haapi-ios-sdk 3.0.0

Mon, 14 Aug 2023 00:00:00 GMT

HaapiConfiguration now provides a property attestationConfiguration to configure DeviceCheck attestation on physical devices. [HSI-195] [HSI-182]A configuration property useAttestation to enable/disable DeviceCheck attestation. [HSI-195]A configuration property attestationMaxRetries to configure retry mechanism. [HSI-182] A configuration property useAttestation to enable/disable DeviceCheck attestation. [HSI-195] A configuration property attestationMaxRetries to configure retry mechanism. [HSI-182] Problem type to represent an error when there's a mismatch between the session and access token. [HSI-158]

haapi-ios-ui-kit 3.0.0

Mon, 14 Aug 2023 00:00:00 GMT

The Haapi UIKit framework is created. [HSI-108]

Curity Identity Server 8.3.2

Wed, 26 Jul 2023 00:00:00 GMT

Curity Identity Server 8.3.1

Fri, 30 Jun 2023 00:00:00 GMT

haapi-android-ui 3.1.1

Mon, 19 Jun 2023 00:00:00 GMT

Improvements to the polling logic while waiting for server response. [HSA-245]

Curity Identity Server 8.3.0

Fri, 16 Jun 2023 00:00:00 GMT

Second release of Verifiable Credential Issuance, now with RAR support Token introspectors in the Java SDK for use in Token Procedure Plugins New metrics for the HTTP client connection pool

oauth-tools 3.4.1

Fri, 02 Jun 2023 00:00:00 GMT

[OT-140] Back to OAuth Tools button was not working, this has been fixed [OT-144] Fix an issue that caused the Client Credentials flow to not allow to select scopes and Client Authentication Method [OT-142] Ignore leading zeros on keys in VCI flow

oauth-tools 3.4.0

Wed, 24 May 2023 00:00:00 GMT

[OT-124] Added support for Verifiable Credential Flow and Pre Authorized Code Flow [OT-130] Add nbf and exp claims in Request Object (JAR) [OT-133] Added support for scope parameter in Refresh Token Flow [OT-139] Fix an issue that could cause multiple Event Listeners to be registered unnecessarily [OT-131] Fix a visual issue with the result of the Introspection Flow

Curity Identity Server 8.2.1

Wed, 17 May 2023 00:00:00 GMT

Curity Identity Server 8.2.0

Mon, 08 May 2023 00:00:00 GMT

Experimental Verifiable Credential Issuance (VCI) support New reference and composite claims types Token issuers in the SDK for token procedure plugins

Curity Identity Server 8.1.2

Thu, 20 Apr 2023 00:00:00 GMT

Curity Identity Server 8.1.1

Wed, 05 Apr 2023 00:00:00 GMT

identity-picker 1.0.0

Tue, 28 Mar 2023 11:59:00 GMT

Added HAAPI support

Curity Identity Server 8.1.0

Mon, 27 Mar 2023 00:00:00 GMT

Template areas on Authentication Actions Android UI SDK updates Opt-in MFA attributes in GraphQL and the DevOps Dashboard Lots of small fixes and updates

haapi-data-model 1.3.0

Mon, 27 Mar 2023 00:00:00 GMT

Add new problem type for mismatch between session and HAAPI access token

haapi-android-sdk 3.1.0

Fri, 24 Mar 2023 00:00:00 GMT

Problem type to represent an error when there's a mismatch between the session and access token. [HSA-238]

haapi-android-ui 3.1.0

Fri, 24 Mar 2023 00:00:00 GMT

The logic which assigns the action buttons style. [HSA-214] Improvements to the text styling of interaction forms headers. [HSA-213] Improvements to the text styling of Content and Heading messages. [HSA-217] Updated authenticator selector icons. [HSA-215] Improvements to the rendering of Headers in Selection UI representation. [HSA-223] Improvements to Form inter items spacing rendering. [HSA-221] Improvements to text content placement in Form. [HSA-235] Improvements to Consent screen items spacing rendering. [HSA-242]

aws-sns-sms-plugin v1.0.0

Wed, 08 Mar 2023 17:23:00 GMT

Added AWS SNS support for sending SMS to users.

nginx_oauth_proxy_module 1.3.0

Wed, 08 Mar 2023 13:35:00 GMT

Builds for NGINX Plus R28 and NGINX 1.23.2

nginx_phantom_token_module 1.4.0

Wed, 08 Mar 2023 13:24:00 GMT

Builds for NGINX Plus R28 and NGINX 1.23.2

nonce-authenticator 1.0.0

Mon, 13 Feb 2023 07:48:00 GMT

First release

Curity Identity Server 8.0.0

Mon, 13 Feb 2023 00:00:00 GMT

A simplified UI mode for new users and common cases Android UI SDK for HAAPI Write token procedures as Java plugins Passkey functionality in supported browsers Native WebAuthn and passkey support for HAAPI on iOS GraphQL account listing for DynamoDB FAPI 2.0 Security Profile compliance

haapi-android-sdk 3.0.0

Mon, 13 Feb 2023 00:00:00 GMT

HaapiClientOperation models to support native Webauthn Authorization. [HSA-143]It requires a version of the Curity Identity Server that includes HAAPI support for the WebAuthn authenticator. It requires a version of the Curity Identity Server that includes HAAPI support for the WebAuthn authenticator.

haapi-android-ui 3.0.0

Mon, 13 Feb 2023 00:00:00 GMT

HAAPI UI Widget SDK is released providing a UI implementation for executing an Haapi Flow authentication. [HSA-70]

haapi-data-model 1.2.0

Mon, 13 Feb 2023 00:00:00 GMT

Add issuer to authorization responses (RFC-9207). Add definition of WebAuthn registration and authentication client operations.

haapi-ios-sdk 2.5.0

Mon, 13 Feb 2023 00:00:00 GMT

HaapiClientOperation models are added to support native WebAuthn Authorization. [HSI-105]It requires a version of the Curity Identity Server that includes HAAPI support for the WebAuthn authenticator. It requires a version of the Curity Identity Server that includes HAAPI support for the WebAuthn authenticator.

oauth-tools 3.3.0

Wed, 01 Feb 2023 00:00:00 GMT

[OT-123] Add tooltips in Workspace icons [OT-129] Add confirmation when clearing localStorage and Cookies from menu Fixed a visual issue in Create Token flow

oauth-tools 3.2.1

Mon, 30 Jan 2023 00:00:00 GMT

Fixed an issue causing the Curity Playground to have the wrong url

oauth-tools 3.2.0

Mon, 30 Jan 2023 00:00:00 GMT

The panel displaying results in most Flows on the right is now resizable When Curity Playground is added, all the demo collections are also created too Adding the Curity Playground runs discovery, fetching the OpenID metadata When a new collection is created it is now added in the bottom of the list of existing collections Fixed an issue with large Workspace names

Curity Identity Server 7.2.3

Tue, 24 Jan 2023 00:00:00 GMT

Curity Identity Server 7.1.2

Tue, 24 Jan 2023 00:00:00 GMT

Curity Identity Server 7.0.4

Tue, 24 Jan 2023 00:00:00 GMT

Curity Identity Server 7.3.4

Mon, 23 Jan 2023 00:00:00 GMT

Curity Identity Server 7.5.2

Mon, 23 Jan 2023 00:00:00 GMT

Curity Identity Server 7.4.4

Mon, 23 Jan 2023 00:00:00 GMT

Curity Identity Server 7.6.1

Fri, 20 Jan 2023 00:00:00 GMT

oauth-tools 3.1.0

Tue, 10 Jan 2023 00:00:00 GMT

Updated used libraries for security reasons

Curity Identity Server 7.6.0

Mon, 19 Dec 2022 00:00:00 GMT

Brand new SAML authenticator with SP metadata support SAML support in the Dynamic Authenticator Environment badge in the Admin UI New authenticator listing page in the Admin UI

haapi-android-sdk 2.4.0

Mon, 19 Dec 2022 00:00:00 GMT

HTTP headers provider in the HaapiConfiguration. [HSA-163]

haapi-ios-sdk 2.4.0

Mon, 19 Dec 2022 00:00:00 GMT

HTTP headers provider in HaapiManager. [HSI-134]

grafana v3.1.0

Fri, 18 Nov 2022 13:54:00 GMT

Added panels for HTTP client metrics

Curity Identity Server 7.5.1

Thu, 10 Nov 2022 00:00:00 GMT

Curity Identity Server 7.5.0

Mon, 07 Nov 2022 00:00:00 GMT

Update to the authentication action SDK to be able to restart a pipeline New actions were added that can restart the authentication pipeline, request user acknowledgement, and manually link accounts New metrics for monitoring HTTP clients are included

haapi-android-sdk 2.3.0

Mon, 07 Nov 2022 00:00:00 GMT

Kotlin version is updated to 1.6.21. [HSA-83] HaapiManager.submit() can provide a Map instead of a Map. [HSA-140]

haapi-ios-driver 2.3.0

Mon, 07 Nov 2022 00:00:00 GMT

Error is thrown when HaapiManager.start() was invoked more than once per app run. HaapiManager.start() can now be invoked multiple times during the application lifetime. [HSI-126] Apple rejection when Bitcode is enabled in the application. [HSI-129]

haapi-ios-sdk 2.3.0

Mon, 07 Nov 2022 00:00:00 GMT

Invalid escaping value for client operations. [HSI-119] Error is thrown when HaapiManager.start() was invoked more than once per app run. HaapiManager.start() can now be invoked multiple times during the application lifetime. [HSI-126] Apple rejection when Bitcode is enabled in the application. [HSI-129]

Curity Identity Server 7.4.3

Thu, 27 Oct 2022 00:00:00 GMT

oauth-tools 3.0.0

Thu, 27 Oct 2022 00:00:00 GMT

Fixed a number of visual bugs on modals [OT-119] Improved the stability of the import configuration functionality [OT-109] The Environments on the app have been redesigned to workspaces [OT-120] Added the option to clear all cookies for websites visited inside the app

Curity Identity Server 6.4.9

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 6.5.6

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 6.6.6

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 6.7.5

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 6.3.7

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 6.8.3

Wed, 19 Oct 2022 00:00:00 GMT

Curity Identity Server 7.2.2

Tue, 18 Oct 2022 00:00:00 GMT

Curity Identity Server 7.4.2

Tue, 18 Oct 2022 00:00:00 GMT

Curity Identity Server 7.0.3

Tue, 18 Oct 2022 00:00:00 GMT

Curity Identity Server 7.1.1

Tue, 18 Oct 2022 00:00:00 GMT

Curity Identity Server 7.3.3

Tue, 18 Oct 2022 00:00:00 GMT

nginx_oauth_proxy_module 1.2.0

Fri, 07 Oct 2022 16:01:00 GMT

Fixed an issue where the module was checking for an origin header for GET requests. When the module is running in the web origin's domain, the origin header is only sent for data changing commands. Therefore when `oauth_proxy_cors_enabled =off` is configured, the origin header is only validated for data changing commands.

netid-authenticator 1.3.0

Fri, 07 Oct 2022 09:37:00 GMT

- Added support for the `BLOCKED_USER` error response from NetID.

Curity Identity Server 7.4.1

Fri, 07 Oct 2022 00:00:00 GMT

Curity Identity Server 7.4.0

Mon, 26 Sep 2022 00:00:00 GMT

Updated and improved client administration and facilities menu in the admin UI New actions: Send Email, Selector, Update Account and Copy Attribute GraphQL support for listing DCR clients stored in DynamoDB New metrics for monitoring relational databases

netid-authenticator 1.2.2

Mon, 19 Sep 2022 09:30:00 GMT

Updated the code to the latest changes in the NetID API. The resulting subject is now decided upon these four properties (ordered by precedence): `personalNumber`, `userId`, `userUniqueName`, `requestedUserId`. The properties themselves are added as subject attributes to the result of authentication.

Curity Identity Server 7.3.2

Mon, 19 Sep 2022 00:00:00 GMT

haapi-ios-driver 2.2.2

Thu, 01 Sep 2022 00:00:00 GMT

SKIP_INSTALL to false in the build settings. [HSI-118]

haapi-ios-sdk 2.2.2

Thu, 01 Sep 2022 00:00:00 GMT

SKIP_INSTALL to false in the build settings. [HSI-118]

Curity Identity Server 7.3.1

Tue, 16 Aug 2022 00:00:00 GMT

Curity Identity Server 7.3.0

Mon, 15 Aug 2022 00:00:00 GMT

Ability to perform attribute-based access control with a new Authorization Manager Introduction of the Dynamic Authenticator that enables hundreds of federations with a single authenticator Actions now can use a specialized mechanizm to communicate with each other during their execution without affecting the final attributes The Email Authenticator now supports a phishing-protectant code as an alternative to hyperlinks

nginx_phantom_token_module 1.3.0

Fri, 12 Aug 2022 19:13:00 GMT

New builds for Ubuntu 22, Debian 11 and CentOS 9 New NGINX Plus R27 and R26 builds Build Support for NGINX 1.23 Use JSON error responses

nginx_oauth_proxy_module 1.1.0

Fri, 12 Aug 2022 17:25:00 GMT

New builds for Ubuntu 22, Debian 11 and CentOS 9 New NGINX Plus R27 and R26 builds Build Support for NGINX 1.23 Fixed log message 'header already sent' written on error responses

haapi-ios-driver 2.2.1

Mon, 25 Jul 2022 00:00:00 GMT

Build settings to generate a valid XCFramework that can be reviewed or placed on the App Store. [HSI-114]

haapi-ios-sdk 2.2.1

Mon, 25 Jul 2022 00:00:00 GMT

Build settings to generate a valid XCFramework that can be reviewed or placed on the App Store. [HSI-114]

Curity Identity Server 7.2.1

Wed, 13 Jul 2022 00:00:00 GMT

aws-token-publisher 1.0.0

Fri, 01 Jul 2022 11:43:00 GMT

The first demo version of the AWS Split Token Publisher Event Listener; Uses the Curity Identity Server SDK version 7.2.0

oauth-tools 2.3.0

Fri, 01 Jul 2022 00:00:00 GMT

[OT-107] Fixed an issue that could cause the app to crash if an environment is deleted [OT-106] Hardware acceleration is now disabled [OT-103] The Guide in the sidebar has been improved [OT-108] Fixed an issue that caused minimize/maximize to not work when double-clicking the app header [OT-105] The application header is moved to a slim sidebar allowing for more usable space [OT-81] Redesigned the error page to provide more information

Curity Identity Server 7.2.0

Mon, 20 Jun 2022 00:00:00 GMT

Support for the EdDSA signing algorithm DCR clients available with a user account in GraphQL GraphQL account schema can now be extended Mutual TLS client authentication using Subject Alternative Names (SAN)

haapi-android-sdk 2.2.0

Mon, 20 Jun 2022 00:00:00 GMT

Changelogs for driver and sdk. [HSA-52] The Haapi SDK now provides Token Revocation functionality. [HSA-61]

haapi-ios-sdk 2.2.0

Mon, 20 Jun 2022 00:00:00 GMT

The Haapi SDK now provides Token Revocation functionality. [HSI-93] OAuthTokenManager now provides a token revocation interface for access and refresh tokens.

github-authenticator 1.5.0

Mon, 06 Jun 2022 08:11:00 GMT

Updated SDK version to 7.1. The plugin now uses Java 17. Fixed error message.

haapi-ios-driver 2.1.1

Wed, 25 May 2022 00:00:00 GMT

Changelogs for driver and sdk. [HSI-84] The framework can be imported and linked in projects targeting deployment versions below iOS 14 when using SPM and drag-and-drop import. [HSI-82] Now provides compile time availability check information for OS version

haapi-ios-sdk 2.1.1

Wed, 25 May 2022 00:00:00 GMT

haapi-ios-sdk 2.1.0

Thu, 12 May 2022 00:00:00 GMT

Nonce and at_hash support for DPoP messages. [HSI-83] The HAAPI Driver and HAAPI SDK frameworks can now support the new DPoP processing algorithm that was introduced in Curity Identity Server 7.1.0.

oauth-tools 2.1.0

Thu, 28 Apr 2022 00:00:00 GMT

[OT-99] Add support for Linux build of the OAuth Tools app. [OT-98] Add menu item to allow users to clear their app state. [OT-100] Add menu item to allow users to logout from the app. [OT-101] Fixed an issue that caused some modals to have their header clipped. [OT-102] Fixed an issue that caused the injected top bar to persist if there was a redirect back to the app without user interaction.

oauth-tools 2.0.1

Wed, 02 Mar 2022 00:00:00 GMT

[OT-97] Fixed an issue in the OAuth Tools app that caused the default config to use the wrong url of the authorization server [OT-96] Added a _What's new_ section, visible during updates to inform about changes that might affect users

haapi-ios-sdk 2.0.0

Thu, 10 Feb 2022 00:00:00 GMT

The HAAPI SDK is now providing HAAPI models. [HSI-76]

oauth-tools 4.1.0

undefined, NaN undefined NaN NaN:NaN:00 BST

[OT-201] It is now possible to use a license key to unlock the app [OT-204] Fixed an issue that caused the app scroll to the redeem button even when the authorization code has been redeemed [OT-205] Fixed an issue that caused 404 pages in the app to be blank

oauth-tools 4.0.0

undefined, NaN undefined NaN NaN:NaN:00 BST

[OT-196] Change how the Authentication Context Reference, Scopes, Claims and Response Types are displayed in the Workspace settings [OT-197] Add new flow for GraphQL APIs [OT-185] Fixed character encoding in the body of JWTs issued by the Create JWT flow [OT-189] Fixed an issue that could cause an empty response to break the app on External API flow [OT-192] Fixed an issue that caused clients to not be suggested in Token Exchange flow [OT-198] Fixed an issue that caused a moved collection to not be visible [OT-199] Fixed an issue that caused duplicating workspaces to not function properly

oauth-tools 3.7.1

undefined, NaN undefined NaN NaN:NaN:00 BST

[OT-177] Updated the JSON representation [OT-178] Fix an issue causing collections to not be placed in the dragged position [OT-154] Updated the icon pack used in the app

oauth-tools 2.2.0

Tue, 17 May 2022 00:00:00 GMT

Fixed some issues with modal that caused buttons or content to be cropped in small browser windows [OT-54] Include the error_description on errors created by server responses, if it exists Small enhancements in the client tab of the environments modal Fixed an issue that caused parameters to be sent after being url decoded [OT-92] The response in Userinfo Flow is now decoded and verified, if it is signed. [OT-85] Add logout button in Interactive flows (Code, Implicit, Hybrid)

netid-authenticator 1.2.1

Fri, 13 May 2022 09:02:00 GMT

- Added missing Swedish translations.

box-authenticator 1.3.0

Thu, 12 May 2022 13:12:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

mobile-connect-authenticator 1.0.0

Thu, 12 May 2022 11:50:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

stackexchange-authenticator 1.2.0

Thu, 12 May 2022 11:19:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

salesforce-authenticator 1.0.0

Thu, 12 May 2022 11:16:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

windows-live-authenticator 1.3.0

Thu, 12 May 2022 11:08:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

slack-authenticator 1.4.0

Thu, 12 May 2022 11:02:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

bitbucket-authenticator 1.3.0

Thu, 12 May 2022 10:55:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

dropbox-authenticator 1.0.0

Thu, 12 May 2022 10:28:00 GMT

- Updated the Curity Identity Server SDK to version 7.1.0. - Fixed using the plugin behind a proxy.

linkedin-authenticator 1.5.0

Thu, 12 May 2022 10:17:00 GMT

Updated the Curity Identity Server SDK to version 7.1.0. The plugin now uses Java 17.

netid-authenticator 1.2.0

Thu, 12 May 2022 08:43:00 GMT

- Added configuration for trust store and key store. - Removed the HTTP client from the configuration.

haapi-android-sdk 2.1.1

Thu, 12 May 2022 00:00:00 GMT

Crash in SDK when HaapiManager.start is invoked. [HSA-57]

haapi-ios-driver 2.1.0

Thu, 12 May 2022 00:00:00 GMT

Nonce and at_hash support for DPoP messages. [HSI-83] The HAAPI Driver and HAAPI SDK frameworks can now support the new DPoP processing algorithm that was introduced in Curity Identity Server 7.1.0.

linkedin-authenticator 1.4.0

Wed, 11 May 2022 14:28:00 GMT

Fixed the authenticator callback so that it works behind a proxy.

haapi-android-sdk 2.1.0

Tue, 10 May 2022 00:00:00 GMT

Nonce and at_hash support for DPoP messages. [HSA-48] Time source property to the configuration for driver/sdk. It may avoid any problems that could occur during any exchanges between client-server (clock skewed by over 1 minute for example). [HSA-51] DCR fallback including new authentication methods such as secret, mtls and JWT assertion. [HSA-27]

Curity Identity Server 7.1.0

Mon, 09 May 2022 00:00:00 GMT

Look and feel is configurable in the admin UI Graphical overview of OAuth client configuration Use of HAAPI with devices that have out of sync clocks

netid-authenticator 1.1.0

Thu, 05 May 2022 12:46:00 GMT

Removed reliance on connection to secmaker's showroom.

idura-authenticator 1.2.0

Mon, 02 May 2022 06:14:00 GMT

The authenticator now correctly works behind a proxy. The SDK has been updated to 7.02. and the plugin now uses Java 17.

oauth-tools 2.1.1

Thu, 28 Apr 2022 00:00:00 GMT

Fixed an issue caused in 2.1.0 that made the app unresponsive

Curity Identity Server 6.8.2

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.4.8

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.1.5

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.6.5

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.3.6

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.0.6

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.5.5

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.2.7

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 6.7.4

Thu, 21 Apr 2022 00:00:00 GMT

Curity Identity Server 7.0.2

Wed, 20 Apr 2022 00:00:00 GMT

Curity Identity Server 7.0.1

Fri, 01 Apr 2022 00:00:00 GMT

netid-authenticator 1.0.1

Tue, 29 Mar 2022 10:19:00 GMT

Fixed path to a template.

Curity Identity Server 7.0.0

Mon, 28 Mar 2022 00:00:00 GMT

New GraphQL user management API User management in the DevOps Dashboard Federated login for the admin UI Apple M1 Docker support User-facing screens have a new, default look and feel Redesigned deployment page in the admin UI Improved token procedure documentation Java 17 upgrade

haapi-data-model 1.1.0

Mon, 28 Mar 2022 00:00:00 GMT

Remove maxItems constraint from the actions in a polling step.

haapi-android-driver 2.0.2

Tue, 01 Mar 2022 00:00:00 GMT

New exception when a device fails to fulfill the attestation requirements.

Curity Identity Server 6.8.1

Fri, 25 Feb 2022 00:00:00 GMT

nginx_oauth_proxy_module 1.0.0

Fri, 18 Feb 2022 12:32:00 GMT

Initial version

haapi-android-driver 2.0.1

Tue, 15 Feb 2022 00:00:00 GMT

Minification on the produced libraries is disabled.

haapi-android-sdk 2.0.1

Tue, 15 Feb 2022 00:00:00 GMT

Minification on the produced libraries is disabled.

Curity Identity Server 6.8.0

Mon, 14 Feb 2022 00:00:00 GMT

Tab completion for token procedures and history menu in the admin UI Higher-level Android and iOS HAAPI SDKs Dynamic clients exposed in the DevOps dashboard Apple M1 support for macOS New Entrust IDaaS authenticator Includes 24 customer-requested improvements and fixes

haapi-android-driver 2.0.0

Thu, 10 Feb 2022 00:00:00 GMT

Configure docs generation and refine Javadocs of the new SDK. [HSA-32] Haapi Driver is based on HAAPI SDK version 1.0.2. [HSA-26] HAAPI Driver is created. [HSA-23]

haapi-android-sdk 2.0.0

Thu, 10 Feb 2022 00:00:00 GMT

Helpers for ExternalBrowserClientOperationStep. HaapiManager can throw exceptions instead of returning a Result type. [HSA-30] HAAPI SDK is providing HAAPI models. [HSA-24]

haapi-ios-driver 2.0.0

Thu, 10 Feb 2022 00:00:00 GMT

HAAPI Driver framework is created. [HSI-76]

oauth-tools 2.0.0

Tue, 08 Feb 2022 00:00:00 GMT

[OT-86] Added support for Apple Silicon [OT-95] The scheme the application uses internally has been changed from `app://oauth.tools` to `oauth.tools://app`.

oauth-tools 1.4.2

Fri, 28 Jan 2022 00:00:00 GMT

[OT-93] Fixed an issue that caused Introspection flow to not work

oauth-tools 1.4.1

Fri, 21 Jan 2022 00:00:00 GMT

[OT-90] Claims modal position fix [OT-87] Claims parameter value encoded incorrectly [OT-82] Token request includes trailing `&` [OT-83] Create JWT flow from token is not added in a group [OT-88] Disable Run button in PAR when appropriate

entrust-idaas 1.1.0

Wed, 19 Jan 2022 11:18:00 GMT

* Added support for the claims request parameter (e.g., to get groups and authenticator info) * Added descriptions to config options

Curity Identity Server 6.7.3

Mon, 17 Jan 2022 00:00:00 GMT

entrust-idaas 1.0.0

Sun, 16 Jan 2022 11:48:00 GMT

Initial release

Curity Identity Server 6.2.6

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.0.5

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.4.7

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.3.5

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.1.4

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.5.4

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.6.4

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.7.2

Wed, 29 Dec 2021 00:00:00 GMT

Curity Identity Server 6.7.1

Tue, 21 Dec 2021 00:00:00 GMT

Curity Identity Server 6.7.0

Mon, 20 Dec 2021 00:00:00 GMT

Redirect URI policies New claims UI Removed OpenSSL dependency Includes fixes for all three Log4j CVEs

haapi-data-model 1.0.3

Mon, 20 Dec 2021 00:00:00 GMT

Remove error_description from invalid input problems.

Curity Identity Server 6.2.5

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.6.3

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.5.3

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.3.4

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.4.6

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.1.3

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.0.4

Sun, 19 Dec 2021 00:00:00 GMT

Curity Identity Server 6.0.3

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.3.3

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.6.2

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.2.4

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.1.2

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.4.5

Fri, 17 Dec 2021 00:00:00 GMT

Curity Identity Server 6.5.2

Fri, 17 Dec 2021 00:00:00 GMT

idura-authenticator 1.1.0

Thu, 16 Dec 2021 15:29:00 GMT

Curity Identity Server 6.5.1

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.0.2

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.1.1

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.4.4

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.2.3

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.3.2

Fri, 10 Dec 2021 00:00:00 GMT

Curity Identity Server 6.6.1

Fri, 10 Dec 2021 00:00:00 GMT

oauth-tools 1.4.0

Fri, 26 Nov 2021 00:00:00 GMT

[OT-78] Collections in the sidebar can now be re-ordered [OT-73] Collections in the sidebar can now be grouped [OT-80] Fixed an issue with the modes of config import

Curity Identity Server 6.6.0

Mon, 15 Nov 2021 00:00:00 GMT

The new opt-in MFA action allows users to enhance the protection of their accounts by adding additional authentication actions to the log-in process Database access has been optimized and reduced for some common use cases Sensitive configuration related to LDAP, database, and HTTP clients are now encrypted at rest

haapi-data-model 1.0.2

Mon, 15 Nov 2021 00:00:00 GMT

Remove code and make title optional in problems.

nginx_phantom_token_module 1.2.0

Thu, 21 Oct 2021 13:11:00 GMT

oauth-tools 1.3.0

Fri, 15 Oct 2021 00:00:00 GMT

[OT-29] Allow redirect_uri to be changed in Code, Implicit and Hybrid flow [OT-66] Add copy button in authorization code [OT-7] Add support for request object JWT validation [OT-72] Add notification system for new features, releases and licenses [OT-77] Fixed an issue that could cause the app to crash if a Code or Hybrid flow was created with no environment

Curity Identity Server 6.5.0

Mon, 04 Oct 2021 00:00:00 GMT

Pre- and post-processing procedures added for DCR Issuing encrypted JWTs (JWE) is now supported TRACE and DEBUG logs are now masked by default

Curity Identity Server 6.4.3

Mon, 13 Sep 2021 00:00:00 GMT

oauth-tools 1.2.1

Tue, 07 Sep 2021 00:00:00 GMT

[OT-75] Added demo code flow with JAR [OT-74] Keys parsed during OpenID discovery are now correctly parsed to X.509

Curity Identity Server 6.4.2

Mon, 06 Sep 2021 00:00:00 GMT

Curity Identity Server 6.4.1

Fri, 27 Aug 2021 00:00:00 GMT

Curity Identity Server 6.4.0

Mon, 23 Aug 2021 00:00:00 GMT

Rolling SSO and refresh token support Java 11 upgrade HAAPI-related improvements

oauth-tools 1.2.0

Tue, 03 Aug 2021 00:00:00 GMT

[OT-56] Added support for Pushed Authorization Request (PAR) in Code and Hybrid Flow [OT-57] Added support for JWT Secured Authorization Request (JAR) in Code and Hybrid Flow [OT-70] Allow none algorithm in JWT generation flow [OT-68] Fixed an issue that caused response_types to be duplicated in the Hybrid flow Fixed scrolling and layout issues on the DCR tab

Curity Identity Server 6.3.1

Mon, 26 Jul 2021 00:00:00 GMT

oauth-tools 1.1.1

Mon, 12 Jul 2021 00:00:00 GMT

[OT-64] Fixed an issue that showed an exception if the app was closed when opened by the web app.

oauth-tools 1.1.0

Mon, 12 Jul 2021 00:00:00 GMT

[OT-62] Login using system browser [OT-63] Fixed an issue that showed a blank page if /demo/ or /c/ was opened [OT-60] Recreate the app window if it is closed (in MacOS), when opening custom scheme URLs [OT-59] Fixed an issue that could cause the import modal to not be opened every time

oauth-tools 1.0.0

Tue, 06 Jul 2021 00:00:00 GMT

Initial release of OAuth Tools app

Curity Identity Server 6.3.0

Thu, 01 Jul 2021 00:00:00 GMT

Compliance with the Open Banking Brazil profile of OpenID Connect Support for Pushed Authorization Requests (PAR) JWT Secured Authorization Request (JAR) support Support for JWT Secured Authorization Response Mode (JARM) Encrypted request object support Amazon DynamoDB support

haapi-android-driver 2.2.0

Sun, 20 Jun 2021 00:00:00 GMT

Changelogs for driver and sdk. [HSA-52]

Curity Identity Server 6.2.2

Tue, 25 May 2021 00:00:00 GMT

Curity Identity Server 6.2.1

Wed, 19 May 2021 00:00:00 GMT

Client-intiated Back-channel Authentication (CIBA) supported WebAuthn authenticator available out of the box More multi-region / multi-tenancy functionality

Curity Identity Server 6.2.0

Mon, 17 May 2021 00:00:00 GMT

Client-intiated Back-channel Authentication (CIBA) supported WebAuthn authenticator available out of the box More multi-region / multi-tenancy functionality

haapi-android-driver 2.1.0

Mon, 10 May 2021 00:00:00 GMT

freja-eid-authenticator 3.3.0

Wed, 28 Apr 2021 09:28:00 GMT

Auto-start Freja eID application from templates when QR code mode is enabled

Curity Identity Server 6.1.0

Tue, 06 Apr 2021 00:00:00 GMT

Credential transformation procedures Multi-region data source SDK updates for events and actions

haapi-data-model 1.0.1

Tue, 06 Apr 2021 00:00:00 GMT

Add properties to form and selector actions. Add metadata to the base step definition. Add definition of an OAuth authorization response step.

Curity Identity Server 6.0.1

Wed, 24 Mar 2021 00:00:00 GMT

signicat-authenticator 1.3.0

Tue, 09 Mar 2021 09:23:00 GMT

Added request_id in authentication attributes when signing

freja-eid-authenticator 3.2.0

Mon, 22 Feb 2021 11:02:00 GMT

Updated SDK dependency to 6.0.0 and added support for HAAPI

Curity Identity Server 6.0.0

Fri, 19 Feb 2021 00:00:00 GMT

Hypermedia Authentication API (HAAPI) reaches general availability Sign-in with Apple in now supported Some deprecated features were removed and some minor breaking changes were made

nginx_phantom_token_module 1.1.1

Wed, 17 Feb 2021 17:44:00 GMT

Fixes #48

sms-tele2-plugin 1.0.0

Wed, 17 Feb 2021 16:50:00 GMT

webauthn-authenticator v1.1.0

Fri, 25 Sep 2020 13:38:00 GMT

nginx_phantom_token_module 1.1.0

Wed, 23 Sep 2020 16:06:00 GMT

Fixed #44

github-authenticator 1.4.0

Mon, 21 Sep 2020 09:45:00 GMT

freja-eid-authenticator 3.1.2

Fri, 18 Sep 2020 14:36:00 GMT

Fixed an issued that caused authenticating with QR code to fails, as Freja replies with N/A on userInfo field

freja-eid-authenticator 3.1.1

Mon, 14 Sep 2020 16:15:00 GMT

Fixes #14

freja-eid-authenticator 3.1.0

Mon, 31 Aug 2020 11:56:00 GMT

Refactored request handling

signicat-authenticator 1.2.0

Wed, 08 Jul 2020 12:21:00 GMT

This release adds support for configuring a static TBS to be used when signing is enabled in the authenticator

webauthn-authenticator v1.0.0

Wed, 27 May 2020 08:58:00 GMT

windows-live-authenticator 1.2.1

Tue, 26 May 2020 11:52:00 GMT

The plugin now uses Curity SDK version 5.1.0. No changes in code.

cloudflare-token-publisher 0.1.0

Mon, 25 May 2020 11:26:00 GMT

The initial release of the Cloudflare Split Token Publisher plugin for the Curity Identity Server.

apigee-split-token-publisher 0.1.0

Thu, 21 May 2020 16:16:00 GMT

The initial release of the Apigee Split Token Publisher plugin for the Curity Identity Server.

freja-eid-authenticator 3.0.0

Tue, 19 May 2020 11:16:00 GMT

debug-attribute-action 1.1.0

Thu, 09 Apr 2020 15:36:00 GMT

This version contains a better user facing screen and a more flexible template that can show the attributes as pure json. The SDK version has been bumped to version 5.0.0

freja-eid-authenticator 2.2.1

Tue, 14 Jan 2020 15:25:00 GMT

Fixed #9

flask-of-oil 1.0.0

Wed, 08 Jan 2020 13:23:00 GMT

# Flask OAuth Filter - an OAuth Interceptor Logic This library provides an extension for protecting APIs with OAuth when using Flask. ## Installation You can either install this module with pip: ``pip install -U flask-of-oil`` ## Usage Please look [here](https://github.com/curityio/flask-of-oil) for more information on how to use this module. ## Questions and Support For questions and support, contact Curity AB: info@curity.io Copyright (C) 2016 Curity AB.

freja-eid-authenticator 2.1.0

Thu, 12 Dec 2019 11:03:00 GMT

Added support for INTEGRATOR_SPECIFIC_USER_ID in Attributes to Return.

freja-eid-authenticator 2.0

Tue, 19 Nov 2019 12:24:00 GMT

This is release 2.0 of the Freja eID authenticator. It contains support for `minRegistrationLevel`, `attributesToReturn` in the authenication request, as well as login using phone number. The templates have been updated accordingly and were internationalized (swedish and english).

signicat-authenticator 1.1.0

Thu, 07 Nov 2019 15:36:00 GMT

This release fixes 2 issues: * was unable to use keystore in formats other than JKS for signing. Fixed the problem so keystores are converted to the correct format before being used. * the keystore manager algorithm was changed from `X509` to `PKIX` as per [Oracle recommendation](https://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#KeyManagerFactory).

username-authenticator 1.1.0

Mon, 30 Sep 2019 14:03:00 GMT

debug-attribute-action 1.0.0

Mon, 09 Sep 2019 08:39:00 GMT

First release of the plugin. This is built against the 3.0.0 SDK.

slack-authenticator 1.3.0

Fri, 16 Aug 2019 09:36:00 GMT

Fix issue where scope access was none.

signicat-authenticator 1.0.1

Fri, 09 Aug 2019 07:43:00 GMT

This release fixes an issue that would cause a NullPointerException when neither a trust manager nor a key manager was configured.

cgi-grp2-signing-consentor 1.0.0

Wed, 31 Jul 2019 12:57:00 GMT

First version of the consentor plug-in which is compatible with Curity Identity Server 4.1.1.

signicat-authenticator 1.0.0

Sat, 05 Jan 2019 14:38:00 GMT

This release provides a number of new features and marks the first major version of this authenticator. In particular, the following features and fixes have been made since the last pre-release: * The method should be configured instead of the country so any can be provided (issue #13) * It is possible to configure trust anchors for singing certs and SSL servers (issue #4) * Client authentication is now supported (issue #8) * If a user cancels authentication at Signicat, the user is redirected back to Curity where the authenticator selector page is shown again (issue #12) When upgrading from a pre-release, old configuration needs to be deleted completely. Also, all old versions of the authenticator and it's dependencies should be removed. With all traces of the pre-release version removed, follow the instructions in the README.rst to install this version.

nginx_phantom_token_module 1.0.3

Mon, 10 Dec 2018 06:10:00 GMT

This version fixes Issue #43 which caused a memory violation when caching was enabled.

nginx_phantom_token_module 1.0.2

Sat, 07 Apr 2018 12:22:00 GMT

This version fixes Issue #38 which prevented the dynamic module from being loaded in NGINX Plus.

signicat-authenticator 0.9.1

Sat, 17 Mar 2018 12:05:00 GMT

This pre-release version of the plug-in adds *support for using signing for authentication*. Currently, it only works with pre-production Signicat environments. The reason for this is that the plug-in needs access to the configured trust stores and client keys; these are not possible to obtain with the 2.4 version of the Curity Identity Server SDK. Support for these will be come in 3.0 of the SDK. Once that is available, this plug-in will be updated to use it, support for production environments will be available, and 1.0 of this plug-in will be released. This pre-release is made to garnish feedback and to get additional testing and verification ahead of this first release.

idura-authenticator 1.0.0

Thu, 15 Mar 2018 16:38:00 GMT

First release of the Criipto authenticator with whilte label feature

nginx_phantom_token_module 1.0.1

Tue, 06 Mar 2018 18:18:00 GMT

This revision release includes the following fixes: * Issue #36 - Curity tests won't run - This fixed a broken prove test (i.e., integration test) due to a library that was imported but did not exist on the CI server. This library was no longer used, so the importing of it was simply removed. * Issue #37 - Change license to Apache 2 - The license of the source code was changed from GNU v. 3 to Apache 2 to be compatible with more projects/sources. There are _no changes_ to the actual module. In fact, the source and binaries are identical. They are included in this release for completeness only.

maven-archetypes 1.2.0

Sat, 03 Mar 2018 15:25:00 GMT

* Fixed Kotlin archetype which was woefully broken * Changed plug-in implementation type getter in the authenticator descriptor to return a lower-case version of the plug-in name rather than the artifact ID

signicat-authenticator 0.9

Wed, 28 Feb 2018 09:59:00 GMT

This is a pre-release, beta version of the Signicat authenticator for the Curity Identity Server. It allows an admin to setup authentication using Signicat for login using Finish, Danish, Swedish, Norwegian, and Estonian E-ID. Note that config and behavior may change from this release to the 1.0 general release, and is only meant to garnish early feedback.

nginx_phantom_token_module 1.0.0

Wed, 21 Feb 2018 18:39:00 GMT

This is the first release of this module. It is now considered stable, and the configuration API is expected to remain as is for the foreseeable future. This release has passed all NGINX Plus certification tests, and has undergone various systems and functional testing. Thanks to those who helped during the alpha and beta phases.

maven-archetypes 1.1.0

Sat, 10 Feb 2018 19:57:00 GMT

This version fixes an issue with the generated plug-ins not being discoverable by the Curity Identity Server because the META-INF file used by the ServiceLoader could not be found. It also changes the artifact IDs to be in-line with other artifact IDs used by other Curity-related open source Java projects. See the updated [README](README.md) for details

stackexchange-authenticator 1.1.0

Tue, 06 Feb 2018 09:18:00 GMT