Papercuts edition

SMS hardening

We've strengthened SMS security with stricter rate limits, verification rules, and geo-blocking to help prevent fraud. For customers experiencing high SMS abuse, we've also introduced Kinde managed CAPTCHA as an additional layer of protection.

Trusted custom OAuth 2.0 connections

Custom OAuth 2.0 connections now have a trusted email option, giving you more control over how these connections behave. Mark a connection as trusted when you're confident in the identity provider, allowing for streamlined authentication flows. This is useful when you're integrating with internal systems or established providers.

Other enhancements

Webhook improvements
Added better billing webhook user ID handling and improved manual plan assignment functionality.

API additions
Addressed duplicate identities returned in Users API and updated SAML connections in API spec.

Audit logging for account not found
Added comprehensive audit logging for authentication attempts when accounts are not found, improving security monitoring and tracking.

API key enhancements
Updated API key permissions handling to ensure proper validation and assignment when creating new API keys.

SDKs

Here's what got updated across our SDKs and developer tools in December:

• Major updates to Flutter, React and NextJS SDKs among other small updates

Subscribe to feature releases

Subscribe to items on our roadmap and find out first when the features you want are available to use! View the roadmap.

Find your community on Slack or Discord

Join the Kinde community on Slack or the Kinde community on Discord for support and advice from our team and other legends working with Kinde.