Insights and release announcements
Blog
-
Connect2id server 8.2.1
Connect2id server 8.2.1
This is a security update to the Connect2id server. Last night a pen test revealed a bug which allowed a particular invalid authorisation request to result in a redirection to the redirect_uri, with the standard error code and message...
Connect2id serverRead article -
Json2Ldap 3.3
Json2Ldap 3.3
What’s in this new release of the Json2Ldap web service for LDAP directory access? Configuration via Java system...
Json2LdapRead article -
Connect2id server 8.2
Connect2id server 8.2
This is a small update to the OpenID Connect / OAuth 2.0 server addressing several recent feature requests and...
Connect2id serverRead article -
Connect2id server 8.1
Connect2id server 8.1
This release of the Connect2id server addresses issues encountered since the release of 8.0 at the start of...
Connect2id serverRead article -
Connect2id server 8.0
Connect2id server 8.0
The start of 2020 marks eight years since the inception of the Connect2id server and, coincidentally or not, the...
Connect2id serverRead article -
The Connect2id server obtains OpenID Connect logout certification
The Connect2id server obtains OpenID Connect logout certification
The OpenID Foundation recently extended its certification suite with tests for the three OpenID Connect...
Connect2id serverRead article -
Deterministic encryption with AES SIV and where it's indispensable
Deterministic encryption with AES SIV and where it's indispensable
When it comes to symmetric block ciphers, there are several modes of operation. These differ in how the ciphertext...
-
Connect2id server 7.18.1 maintenance release
Connect2id server 7.18.1 maintenance release
This is a maintenance release of the Connect2id server which fixes three issues in the code and the configuration....
Connect2id serverRead article -
Connect2id server 7.18 has Microsoft SQL Server support, new stateless clustering mode
Connect2id server 7.18 has Microsoft SQL Server support, new stateless clustering mode
November’s 7.18 release of the OpenID Connect / OAuth 2.0 server focuses on updating backend database support...
Connect2id serverRead article -
Pushed authorisation requests (PAR) in the OAuth 2.0 SDK
Pushed authorisation requests (PAR) in the OAuth 2.0 SDK
The brand new Pushed Authorisation Requests (PAR) draft is now supported in v6.17 of the OAuth 2.0 / OpenID...
Connect2id serverRead article -
Updated token validation in Nimbus JOSE+JWT 8
Updated token validation in Nimbus JOSE+JWT 8
Version 8 of the Nimbus JOSE+JWT library updates the token validation framework. When creating a JOSEProcessor or...
JOSERead article -
Connect2id server 7.17 updates access tokens and introspection
Connect2id server 7.17 updates access tokens and introspection
Updated token introspection Connect2id server 7.17 updates JWT-secured introspection responses to the latest...
Connect2id serverRead article -
Nimbus JOSE+JWT 7.9 fixes an unchecked exception vulnerability
Nimbus JOSE+JWT 7.9 fixes an unchecked exception vulnerability
Nimbus JOSE+JWT 7.9 fixes vulnerabilities in the code which may result in the library throwing an unchecked Java...
JOSERead article