Breaking changes
- Support multiple domains for tenant: There's an option to automatically associated a user to a tenant based on the user's email domain. Sometimes the same tenant can 'accept' multiple domains - so that's supported now!
Please notice that this breaks compilation - considering this value is now an array and not a string.
Enhancements
- Appending user login IDs: We've added the option to assign multiple login IDs to a user, using the
additional_login_idsparameter, upon creation and/or invitation of the user. - First, middle and last names of a user: We added system attributes for first (
given_name), middle (middle_name) and last (family_name) of a user. - Control audience claim in access keys: With the new
audienceparameter in theexchange_access_keyfunction - you can control theaudclaim in the JWT that's created for the access key. - Set the user's roles: We now support the option to set an existing user's roles. Instead of fetching existing roles, removing all of them and adding new ones 'from scratch' - use the
set_rolesuser function. - Check roles or permissions of a user: Check if the user has at least one of the roles in a provided list, using the
get_matched_rolesfunction. This also applies for checking permissions (get_matched_permissions), and also for checking the existence on a project level and a specific tenant level (get_matched_tenant_roles,get_matched_tenant_permissions). - Batch user invitation: You can now use the
invite_batchfunction to add multiple users to your project. - Remove a user's passkey login IDs: Using the
remove_all_passkeysmanagement function, the Descoper can decide to remove all passkeys associated with a specific user. - Delete a user by its user ID: Support to delete a user by its userId property, using the new
delete_by_user_idfunction.
Bug fixes
- Support embedded delivery method and login options in test users: Some functionalities were left out from the test users' support, so we made sure those are quickly added.