Release notes
This will highlight the most important items. For in depth detail contact Fortified ID.
Default polling interval changed
In accordance with recommendations from BankID polling intervall is now 1 second.
New module for arbitrary end user notifications
Information endpoint module allows for a generic and centralised way of customised information to end user.
Cluster configuration validation updates
Improved validation of cluster setup. Server will fail startup instead of starting with potentially broken configuration.
UI improvements - Selector
If nothing to display, flickering has been removed.
OIDC Implicit Flow updates
All inbound request params are now available for future use.
LDAP failover supported
LDAP module now can handle multiple LDAP servers.
ParseJwt valve update
Valve can now verify signature on id token where information is fetched from discovery-jwks-url.
CreateJwt valve update
kid is created by default
AuthController now supports fail_location
Instead of static error page AuthController fail_location allows for sending User-Agent to alternative location.
AuthController now supports expansion
fail_location & target now can contain expansion expressions.
HTTP client module improvement
Fixed bug when setting content-typ.
Simplified OIDC kid
Based on selected key store kid value is now added automatically.
Simplified linux installation
.deb packages are now served from FortifiedID repository making installation and upgrades easier.
SAML IDP logout response location update
IDP now can handle ResponseLocation & Location in metadata.
ResponseLocation is used prior to Location
CVE updates
Updating underlying building blocks, both front and backend, in order to keep CVE risks at a minimum.
Last updated