Auth and other updates in April

Here’s what we delivered in April.

New SAML configuration options for enterprise connections

• Set upstream params - params tell your IdP what user experience you want. E.g. you can show users an account selector, pass a log-in hint, and more.

• Name ID - A name identifier is a key element in a SAML assertion that uniquely identifies the user (subject) within a given SAML context.

• Protocol binding - describes how the SAML authentication request is sent from Kinde to your IdP.

• Sign request algorithm - defines the cryptographic algorithm used to sign SAML requests, e.g. SHA256 or SHA1.

• Key attributes - provide more context about the authenticated user for additional access control or personalization.

• Sign in URL - Overrides the default SSO endpoint with a URL recognized by your IdP.

SDK and DX updates

• Next.js, Ruby, Nuxt, .NET, React

• Updated Kinde js.utils

• Add and update role scopes via API

Bugs and fixes

• We’re now more strict on audience claims. Before, we would match a request that was either https://my.api.com/api or https://my.api.com/api/. Now the audiences are treated as strings and the match needs to be exact. This usually means no trailing /.

• Removed case-sensitivity from callback URLs

Billing update

We’re currently doing a closed testing round of our billing feature and improving performance based on the feedback. More testers are coming on board each day. Complete this form if you want to be part of it.

Subscribe to feature releases

Subscribe to items on our roadmap and find out first when the features you want are available to use! View the roadmap.

Find your community on Slack or Discord

Join the Kinde community on Slack or the Kinde community on Discord for support and advice from our team and other legends working with Kinde.