New in version 2.0
New features
Starts from Essentials package
- Support of custom scopes of identity providers (facebook, googleplus, ...)
Starts from Standard package
- Webhook Security
- Webhooks can be secured acting as a non-interactive cidaas client
Consent Management
Progressive Regisration
Fido U2F
Scope Groups
Adding support for the Admin portal 2 FA
Hosted Pages
Starts from Pro package
- Support of hosted pages for signup, login and user self services pages (Beta)
- Connect of groups and apps In an app access can be restricted to particular groups
- Webhook Security
- Webhooks can be secured with TOTP
- JWE enhancements (nested JWT) Encryption of claims (JWS) and encryption of JWS token is conducted now
- Email activity reports
Starts from Enterprise package
Custom SMS and eMail providers cidaas SMS and eMail providers can be replaced by own
Access Control
Smart FDS system
Adoptions to standard
Full support of mandatory standards:
- OpenID Connect Core 1.0 (spec)
- OpenID Connect Discovery 1.0 (spec)
- OpenID Connect Session Management 1.0 - draft 28 (spec)
- OpenID Connect Front-Channel Logout 1.0 - draft 02 (spec)
- OpenID Connect Back-Channel Logout 1.0 - draft 04 (spec)
- OAuth 2.0 (RFC 6749)
- OAuth 2.0 Bearer Token Usage (RFC 6750)
- OAuth 2.0 Multiple Response Types (spec)
- OAuth 2.0 Form Post Response Mode (spec)
- OAuth 2.0 Token Revocation (RFC 7009)
- OAuth 2.0 Token Introspection (RFC 7662)
- Proof Key for Code Exchange (RFC 7636)
- JSON Web Tokens for Client Authentication (RFC 7523)
Other enhancements
- Performance improvements
- Several issues resolved
- Admin Dashboard enhancements