New Release: Curity Identity Server 9.3

We are pleased to announce the release of a new version of the Curity Identity Server. As always, this version contains many new features, fixes and enhancements.

Here are some of the highlights:

Native Support for the Token Handler Pattern

We are very proud to release the first production version of our Token Handler implementation. The Curity Token Handler, a new and secure way of protecting tokens used by Single Page Applications (SPAs) is an important outworking of our quest to make the Internet safer.

Token theft in SPAs is a gaping vulnerability that’s created when tokens are stored in the browser and accessible from JavaScript. This has now completely changed with the token handler pattern and the new Token Handler function in the Curity Identity Server.

By configuring the Token Handler application in the product, your SPA gets a secure, confidential, generic backend that scales across clouds.

Full Multi-tenancy Support

The multi-tenancy feature that has been mentioned in a few releases is now final and ready for production. In addition to JDBC, the JSON data source has been updated to support multi-tenant backends.

Discoverable Credentials for Passkeys

Lastly, we have improved our passkeys support further by enabling discoverable credentials to be used. This provides the user with an even smoother authentication journey as it leverages the built in mechanisms in the browser to let the user pick the account along with the credential to be used.

Read the release notes for more details.

The 9.4 train will leave the station on August 12, 2024.

Release Webinar

On June 25, at 15:00 CEST, we'll host a release webinar to explore what's new in Curity Identity Server 9.3. Register for the webinar here to catch the session live.