The following has been released in the patch:

  • Support for key ID in JWT: in the OpenID Connect (OIDC) flow, after exchanging an authorization code for an ID token, your OIDC clients can now validate the ID token and confirm that Unity-IdM is the signing authority. The OAuth /jwk public endpoint has been updated to expose the key IDs, and the key ID used to sign the JWT token is now included in the JWT token header.
  • Fix for Console OAuth IdP editor: When a user updates the OAuth IdP configuration and sets the “Token signing algorithm” to an ECC-based option with an invalid signing credential, submitting the configuration fails, causing the updated IdP configuration to be discarded. This patch addresses this issue.
Go back to all releases
4.0.3 was published on 08/11/2024
Assets
Detailed changelog, complete documentation & downloads
View
Downloads
Direct access to the 4.0.3 packages
Download
User manual
Read the 4.0.3 user manual
Read