...
Users with expired re-certification processes are prevented from login in to other applications other than the CoreOne Self-Service Portal.
If the only possible path for an authentication is an external identity provider, the user will now be redirected automatically.
Local claims and attributes can now be updated automatically from external authentication providers. The update occurs upon each login request of a user.
The Core Identity entity now has a read only e-mail address for easier access.
JWT Certification Secrets for clients are now supported.
The matching attributes for external identities is now configurable on the external identity provider configuration. By default, external and internal identities are matched on the email address.
BREAKING CHANGE: The SMS setting classes have been moved to the Infrastructure library.
SMS OTPs now contain a screen reader version
BREAKING CHANGE: The RequestId is no longer passed from request to request by default. This behavior can be re-enabled in the settings.
CoreOne Advanced Permission Management
...