We are pleased to announce the release of the Curity Identity Server 6.2. This minor release is a significant add-on to the product and includes several exciting features.
Client Initiated Backchannel Authentication supported
The new version includes support for the OpenID Foundation's Client Initiated Backchannel Authentication (CIBA) protocol. It allows an authenticated client to directly start an authorization request. Coupled with Hypermedia Authentication API, it ensures a seamless mobile login experience using any login method without the need for a browser, even when initiated by a third-party.
WebAuthn authenticator available out-of-the-box
The Curity Identity Server now supports the WebAuthn authenticator out-of-the-box. With the feedback and help from early adopters and partners (thanks Yubico!), this updated version is trivial to configure and has a great user experience.
More multi-region and multi-tenancy functionality
The 6.2 release has new features to help with multi-region and multi-tenant deployments. It is now possible to configure an authentication action that will transfer the user from one region to another during an authentication flow. Also, HEART-style token support has been added, so that proxies and clients can know which region's or tenant's endpoints to send the opaque inner token to when exchanging or introspecting it. This together with a new system claims provider will help gateways and clients assert the region in which the token is issued.
Like always, bugs were fixed, dependencies were updated, docs were written, and the UI was improved. We hope you enjoy using this release as much as we enjoyed building it!
Read the release notes for more details.
On Tuesday, May 27, at 15:00 CEST we will host a short webinar to explore what’s new in 6.2. We will go through the release notes, highlighting new features, fixes and, enhancements.