Enhancements
- Password Replace return value: We're now returning the JWT's response in the
password.replacefunction, so that the session and refresh JWTs can be utilized (for example, in flows). - OIDC JWT validation support: For OIDC JWT validation, we've added the option to pass the
audiencevalue to all validation functions (such asvalidation_session). That value will be compared to theaudclaim in the JWT, so to make sure those are aligned. This is a must when using OIDC.