The WSO2 Identity and Access Management team is pleased to announce the first release candidate of WSO2 Identity Server 7.3.0.
How to run
- Extract the downloaded zip file.
- Go to the bin directory in the extracted folder.
- Run the
wso2server.shfile if you are on a Linux/Mac OS or run thewso2server.batfile if you are on a Windows OS.
What is new in this release
WSO2 Identity Server 7.3.0 is the latest WSO2 Identity Server release and is the successor of WSO2 Identity Server 7.2.0. It contains the following new features and enhancements:
New Features
- OpenID for Verifiable Credential Issuance (OID4VCI)
- Client Initiated Backchannel Authentication (CIBA) Grant
- OIDC Front-Channel Logout
- Enhanced Organization Authentication in B2B Applications
- Share Users with Organizations through Console
- Selectable Token Issuer for Organization Applications
- Token Exchange for Organization Applications
- Selectable Storage Locations for User Attributes
- Notifications for Workflow Approvers and Initiators
- Rule-based Workflow Engagement
- SCIM Outbound Provisioning for Organizations
- Administrative API for Managing End-User Enrolled Credentials
- Organization-level Governance for TOTP Enrollment During Login
- Improved Sift Integration for Fraud Detection
- Session Lifetime Limit Enforcement
- Amazon SNS Support and Multiple Provider Support for Push Notifications
- Automatic Certificate Refresh for SAML Identity Providers
- Pre-issue ID Token Action
- Enhanced IAM-CTL Support for Configuration Promotion
- HTTP-based Email Provider Support
- OAuth Client Credentials Authentication for HTTP-based SMS and Email Providers
- Non-persistent JWT Tokens
Enhanced Features
- JWE Encryption Algorithm Support for ID Tokens
- App-native Authentication for Device Authorization Grant
- PROFILE_UPDATE Webhook Event
- JWT Scope Claim as Array
- Skip Session Revocation on Password Update
- SCIM Filtering Improvements for Users and Groups
- OTP Retry and Resend Limits in Adaptive Authentication
- Enhanced Password Expiry Reset Enforcement
Deprecated features
Refer to the about this release section in the product documentation to find the deprecated features from WSO2 IS 7.3.0 onwards. These features will be removed in a future release and we expect you to move to recommended solutions.
Fixes and Improvements
A list of all the new features and bug fixes shipped with this release can be found in the following locations:
Known Issues
All the open issues pertaining to WSO2 Identity Server are reported at the following locations:
Contribute to WSO2 Identity Server
Mailing Lists
Join our mailing lists and correspond with the developers directly. We also encourage you to take part in discussions related to the product in the architecture mailing list. If you have any questions regarding the product you can use our StackOverflow forum to raise them as well.
- IAM Developer List: iam-dev@wso2.org
- User Forum: StackOverflow
Discord Channels
Join us via discord for even better communication. You can talk to our developers directly regarding any issues, or concerns about the product. We encourage you to start discussions or join any ongoing discussions with the team, via our discord channels.
- General discussions: General Channel
- Help: Help Channel
- New releases: Product Updates Channel
Reporting Issues
We encourage you to report issues, improvements, and feature requests regarding WSO2 Identity Server through our public WSO2 Identity Server GIT Issues.
Important: Please be advised that security issues must be reported to security@wso2.com, not as GitHub issues, in order to reach the proper audience. We strongly advise following the WSO2 Security Vulnerability Reporting Guidelines when reporting security issues.
For more information about WSO2 Identity Server, please see https://wso2.com/identity-and-access-management or visit the WSO2 Oxygen Tank developer portal for additional resources.
~ The WSO2 Identity and Access Management Team ~