What's New With WSO2 Identity Server?
- Ashen Weerathunga
- Technical Lead - WSO2
WSO2 IAM team
The WSO2 IAM team is pleased to announce that WSO2 Identity Server 5.9.0, with a range of new features and major improvements, is now available!
Feature Highlights
New configuration model
WSO2 Identity Server 5.9.0 comes with a brand new simple configuration model with a better user experience. The previous configuration model had multiple configuration files such as carbon.xml, identity.xml, and axis2.xml. developers had to tackle multiple files even to configure a single scenario with this model. We addressed this inconvenience in the new configuration model which uses one single file (deployment.toml). Developers only need to use a single file for additional configurations to the server (read this blog to learn how). Check out the documentation here.
A new set of RESTful APIs
As RESTful APIs are now favored over SOAP APIs, we are in the process of implementing RESTful APIs for the available SOAP APIs. REST APIs for core management capabilities and end-user interactions are becoming essentials for building cloud-based solutions.
We have introduced the following REST APIs with the new release:
- Manage challenge question answers
- View authorized OAuth apps and revoke authorization from the apps
- Manage associated accounts
- Register FIDO devices
- View and revoke login sessions
- Manage pending approvals
New REST APIs for administrative users:
- Manage claims
- Manage challenge questions
Furthermore, we have plans to use these REST APIs and improve all user portals in the upcoming releases. Please try them out here and we would love to hear your feedback.
Cross protocol single logout
WSO2 Identity Server 5.9.0 provides a seamless experience for both single sign-on and single log out even with applications that communicate using different SSO protocols such as OIDC and SAML. Check out the documentation here.Adaptive authentication function library
We introduced the script-based adaptive authentication in WSO2 Identity Server 5.7.0 that provided the capability to write your own authentication flow for your application based on conditions in JavaScript. WSO2 Identity Server 5.9.0 introduces the capability to add function libraries that can be imported and reused in authentication scripts within multiple applications. Check out the documentation here.
Office365 integration with WSO2 Identity Server for multiple domains
By extending the current capabilities, we have introduced Office365 integration support for multiple domains via SAML2 protocol. Please follow the documentation for more details.
Documentation revamp
We have moved WSO2 Identity Server documentation to GitHub with a whole new structure and a new look and feel. It will be easier for users to try out and learn the product. You can check out the new documentation from here and let us know the feedback.Other enhancements
We have upgraded the third-party Java and JavaScript dependencies along with Tomcat as the older versions of third-party libraries caused continuous vulnerabilities with the new releases. Apart from that, we have done lots of improvements in the product with this release and you can find more details from here.
Seamless migration from 5.8.0
If you are already using the WSO2 Identity Server v5.8.0 in your organization, you can seamlessly migrate to the latest version. There is a set of configuration-related changes in the 5.9.0 release that you need to know before migrating to the latest version as described here. Also from this release onwards, we have introduced well defined guidelines on zero downtime migration strategy via blue-green deployment as described here. You can refer all the details related to the migration process over here.
What's Next?
We are currently working on a major UX revamping for WSO2 Identity Server and you will be able to experience a whole new React-based user and admin portals in upcoming releases. Check out our roadmap to find out more about all the cool things that we are working on now and introduce to you in due course.
Join our mailing lists and engage with our developers directly. We are also happy to have your participation at our discussions related to the product in the architecture mailing list. If you have any questions regarding the product, you can use our Stack Overflow forum to raise them as well. Reach out to us via our [email protected], [email protected], Stack Overflow, or Twitter.