2020 was the start of a completely new decade for WSO2 Identity Server since the tool showed a new face with the release of version 5.10.0, which promises to be a pioneer in data protection and identity management for companies that handle a vast amount of valuable and confidential information.
All the latest developments of the new WSO2 Identity Server version
A few weeks ago we announced the main features of the latest version of identity server 5.9.0 and today we have a new update (5.10) of this powerful tool for the management of identities in companies system accesses.
Nowadays, we are witnessing a major leap in telecommunications experienced by organizations worldwide, which can do nothing but grow due to the economic, social and employment crisis that we are facing as a result of the coronavirus pandemic.
In this landscape, the management of identities and the protection of business information become a complex challenge that must be addressed. There is no doubt that we must have safer and more efficient infrastructures to achieve an adequate governance and management of the identities that access our data.
Identity server can offer great value toward this goal, since it constantly incorporates new technologies and developments that increase the agility and efficiency of authentication and access processes and data security in organizations.
The new developments of this version are:
Through FIDO2 and W3C (World Wide Web Consortium), WSO2 Identity Server admits password-less authentication, eliminating all risks related to this action, such as repetition attacks, phishing and many others in use today.
It is also user-friendly, since they can unlock sign-in credentials through a wide range of options, such as webcams, fingerprint readers, etc.
NEW SELF-CARE PORTAL
The new identity server offers an excellent UX that is quite simple to use and consumes improved RESTful APIs that correspond to previous versions. The user interface has become extremely intuitive, offering a comfortable and positive user experience, meaning that the self-care portal plays a major role. Other available features in this new version in relation to the self-care portal are:
- User profile management and exporting
- Account linking
- Restoring passwords
- Recovering an account
- Management of all authentication factors
- Supervision of active user sessions
- Consent management
- Review of pending approvals
- List of applications
MORE REST API
The previous version included novel Restful APIs that were essential for the administration and interaction with the end user. Identity server 5.10 has included new APIs to:
- Manage identity providers
- Manage e-mail templates
- Manage user stores
- Manage the storage of passwords
- Manage applications
- OpenID Connect Scope Management
- Manage governance connectors
- Manage the script library
- Manage user-discoverable applications
And it improved others!
- Support for federated accounts association in the management of associated accounts
- OAuth2 scope management
SCOPE-BASED AUTHORIZATION FOR INTERNAL REST APIs
In the WSO2 server, REST API authorizations are accomplished via permissions. Users can obtain a token via OAuth flows, and scope-based authentications have also been included for specific request.
For their part, system developers or administrators will benefit directly, since they will be able to use the flexibility of the OAuth framework with internal REST APIs.
SINGLE USER IDENTIFICATION SUPPORT
In previous versions of the product, the username was considered to be an immutable attribute. There was an exclusive identifier available for a user other than the use of a SCIM identification.
The new version includes a single immutable user identification for the entire system, also maintaining the assignment of all user attributes. In addition, the new update includes a novel set of user store administrators that work with the single user identifier, deprecating its existing homologous features.
Some updates and novelties of identity server 5.10 can make migrations more complex and fundamentally affect unique user ID implementations. This has led the creators of the new version to use backward compatibility in the code itself, which has been refactored and updated to foster an effective migration.
If you have any question about this product or wish to know more about it, send us a message and we will assist you so that you can correctly manage and administer your user identities using Identity Server.