If the current LoA only contains an external identity provider, you can now initiate a direct redirect to that provider.
Users with expired re-certification processes are prevented from login in to other applications other than the CoreOne Self-Service Portal.
If the only possible path for an authentication is an external identity provider, the user will now be redirected automatically.
Local claims and attributes can now be updated automatically from external authentication providers. The update occurs upon each login request of a user.
The Core Identity entity now has a read only e-mail address for easier access.
JWT Certification Secrets for clients are now supported.
The matching attributes for external identities is now configurable on the external identity provider configuration. By default, external and internal identities are matched on the email address.
BREAKING CHANGE: The SMS setting classes have been moved to the Infrastructure library.
SMS OTPs now contain a screen reader version

CoreOne Application Services

...

Versions Compared