Skip to content
Connect2id
Connect2id server

Connect2id server 19.1

The client registration API of the Connect2id server is updated to support dry-run POST and PUT requests. The dry_run=true query parameter tells the server to process the request in the usual way, but skip saving the registration to the database. This makes it easy to test the metadata validity for a new client, or for an already registered client that needs to be modified.

Example dry-run request for a new OAuth 2.0 client to use the cross-device (CIBA) flow:

POST /clients?dry_run=true HTTP/1.1
Host: demo.c2id.com
Content-Type: application/json
Authorization: Bearer ztucZS1ZyFKgh0tUEruUtiSTXhnexmd6

{
  "grant_types"                     : [ "urn:openid:params:grant-type:ciba" ],
  "token_endpoint_auth_method"      : "private_key_jwt",
  "token_endpoint_auth_signing_alg" : "ES256",
  "jwks_uri"                        : "https://client.example.com/jwks.json",
  "dpop_bound_access_tokens"        : true
  "backchannel_token_delivery_mode" : "poll",
  "login_hint_types"                : [ "login_hint_token" ]
}

The client registration guide has more examples.

This release also fixes three issues, including two recent regressions pertaining to ID token issue metering and Oracle database support. More information about Connect2id server 19.1 can be found in the release notes below.

Download 19.1

For the signature validation: Public GPG key

Standard Connect2id server edition

Apache Tomcat package with Connect2id server 19.1: Connect2id-server.zip

GPG signature: Connect2id-server.zip.asc

SHA-256: 7c162dde996971eb090dfcf02b7af6b4e8c88b71031b82a65bca2e7116e3fd07

Connect2id server 19.1 WAR package: c2id.war

GPG signature: c2id.war.asc

SHA-256: a54935c35df12c1f3506b07375b9a5d9a38d502a0387e83ec5a4f250d8c566d8

Multi-tenant edition

Apache Tomcat package with Connect2id server 19.1: Connect2id-server-mt.zip

GPG signature: Connect2id-server-mt.zip.asc

SHA-256: 773a5f015cfb1dce9a33d852e12074db6e78b480d5fa74d76cd77e5b9aea762e

Connect2id server 19.1 WAR package: c2id-mt.war

GPG signature: c2id-mt.war.asc

SHA-256: d61bcc21c96d94a7909e65568a0570cbb95a35d834964688af28cd27fa1c7ea4

Questions?

For technical questions about this new release contact Connect2id support. To purchase a production license for the Connect2id server, renew or upgrade your support and updates subscription, email our sales.

Release notes

19.1 (2025-07-24)

Configuration

  • /WEB-INF/infinispan-*-oracle.xml – The minimum supported Oracle Database version is explicitly set to 18c.

Web API

  • /clients

    • Adds support for an optional dry_run query parameter for client registration POST and PUT requests. When true the Connect2id server will process the request as usual, but will not commit the client registration (new or updated) to the database. The dry-run option can be used to test the registration of a new client, or the update of an existing client.

      Successfully completed dry-run client registration requests do not affect the clientStore.newRegistrations and clientStore.updates meters.

Resolved issues

  • The default op.ciba.requestQueue.enable value in WEB-INF/cibaRequestQueue.properties must be false (disabled) (issue server/1091).

  • Sets the minimum supported Oracle Database version in the Infinispan XML configuration to 18c, to prevent the jOOQ default value from applying, which in jOOQ 3.20.x resolves to 23ai. In Connect2id server 18.2 deployments with an Oracle Database older than 23ai this caused SQL MERGE queries that use the boolean data type to fail, as this data type becomes supported only in Oracle Database 23ai. Previous versions must use a NUMBER(1,0) datatype to emulate a boolean (issue server / 1096).

  • Fixes a defect introduced in Connect2id server 18.0 that caused the op.idTokenIssues meter to only count ID token issue events in the CIBA flow (issue server / 1097).

Dependency changes

  • Updates to com.nimbusds:oauth2-oidc-sdk:11.26.1

  • Updates to com.nimbusds:c2id-server-jwkset:2.0.4

  • Updates to com.nimbusds:tenant-registry:9.0.4

  • Updates to com.nimbusds:c2id-server-key-store:1.7.5

  • Updates to com.nimbusds:oauth2-authz-store:28.8.2

  • Updates to com.nimbusds:oidc-session-store:22.1.2

  • Updates to com.nimbusds:infinispan-cachestore-sql:8.4.1

  • Updates to com.nimbusds:common:3.7.1

  • Updates to org.apache.commons:commons-lang3:3.18.0

  • Updates to org.postgresql:postgresql:42.7.7