v1.7.19

This release adds tenant support to management flow options and introduces role mapping configuration for OIDC apps.

🚀 New Features & Enhancements

• Tenant Support in Management Flow Options – Added a tenant field to management flow options, enabling tenant-aware management flow execution (#600)
• OIDC Role Mapping – Added role mapping support to the OIDC configuration type, allowing roles to be mapped during OIDC setup (#601)

---

🔗 Full Changelog: Compare release/v1.7.18...release/v1.7.19

v1.7.18

This release adds support for specifying the signing algorithm in client assertion generation and introduces a new test attribute on the user object.

🚀 New Features & Enhancements

• Client Assertion Algorithm Selection – Added support for specifying the signing algorithm when using generateClientAssertionJwt, allowing more flexible assertion generation (#595)
• User Object Update – Added a new test attribute to the user response (descope-js#1257)

---

🔗 Full Changelog: Compare release/v1.7.17...release/v1.7.18

v1.7.17

🚀 New Features & Enhancements

• Support Provider ID – Added the ability to pass providerId for all .sign{up,in} methods (#580

---

🔗 Full Changelog: Compare release/v1.7.14...release/v1.7.16

v1.7.16

This release adds audience claim enforcement in session validation, user batch patching, and enhanced client assertion generation with flatten audience support.

🚀 New Features & Enhancements

• Optional Audience Claim Enforcement – Introduced optional audience (aud) validation in session and JWT flows, enhancing security by allowing audience claims to be enforced during validation and refresh processes (#580)
• Batch User Patch – Support for patching multiple users in a single operation
• Flatten Audience in Client Assertions – Introduced a flattenAudience flag in client assertion generation for more flexible OAuth flows (such as SMART on FHIR) (#587)
• Expose Claims in JWT Response – Added support for exposing claims directly in the JWTResponse object (descope-js#1199)

---

🔗 Full Changelog: Compare release/v1.7.14...release/v1.7.16

v1.7.14

This release introduces client assertion generation, seamless session migration, enhanced outbound connect configuration, and improved handling of multiple cookies.

🚀 New Features & Enhancements

• Client Assertion Generation API – Added the generateClientAssertionJwt API to generate client assertions for secure OAuth authentication flows (e.g., SMART on FHIR) (#573)
• Session Migration – Added support for migrating sessions seamlessly via the externalToken parameter (#576)
• Outbound Connect Tenant Options – Added tenant-specific configuration options for outbound connect (descope-js#1190)

🛠 Fixes & Maintenance

• Multi-Cookie Handling – Fixed regex parsing to correctly handle multiple cookies. The SDK now accurately parses the refresh cookie when a session token is set (#579)

---

🔗 Full Changelog: Compare release/v1.7.13...release/v1.7.14

v1.7.13

This release introduces support for OIDC resource specification in authentication flows, user batch deletion, and improved user search capabilities.

🚀 New Features & Enhancements

• Batch User Deletion – Added support for deleting multiple users in a single request (#568)
• Enhanced User Search by Roles – Enabled searching for users that hold all specified roles within a tenant (#569)
• OIDC Resource Parameter – Added oidcResource parameter support across SDK start options to handle resource specification in inbound app flows (descope-js#1184)

---

🔗 Full Changelog: Compare release/v1.7.12...release/v1.7.13

release/v1.7.12

This release adds support for using management key for Auth requests.

🚀 New Features & Enhancements

• Auth Management Key – Added capability to use management key for Auth requests (#560)

---

🔗 Full Changelog: Compare release/v1.7.11...release/v1.7.12

v1.7.11

This release introduces support for tracking the creation time of users.

🚀 New Features & Enhancements

• User Creation Time Metadata – Added support for retrieving the timestamp when users were created (#555)

---

🔗 Full Changelog: Compare release/v1.7.9...release/v1.7.10

v1.7.9

This release introduces support for executing management flows, outbound app token fetching, enhanced user and tenant management capabilities, and more.

🚀 New Features & Enhancements

• Management Flow Execution – Added support for executing management flows (#554)
• Outbound App Token Fetching – Added methods for retrieving tokens for outbound apps (#540)
• Batch User Creation – Enabled creation of multiple users in a single request (#553)
• Tenant Role Search Enhancements – Added tenantRoleIds and tenantRoleNames filters to user search requests (#552)
• Custom Attribute Improvements – Added support for arrays of strings in custom attribute types (#444)

🛠 Fixes & Maintenance

• Improved Resilience for Edge Cases – Implemented a retry mechanism for handling HTTP 521 and 524 responses (descope-js#1151)

---

🔗 Full Changelog: Compare release/v1.7.8...release/v1.7.9

v1.7.8

This release introduces inbound and outbound app support, improvements to embedded signup, and better role and token handling.

🚀 New Features & Enhancements

• Inbound App Support – Added support for managing inbound apps (#424)
• Outbound App Support – Added support for managing outbound apps (#536, #537)
• Embedded Link Signup – Enable signup via embedded links (#518)
• Default Role Assignment – Added support for assigning default roles to users (#520)
• Login Hint for SSO and OAuth – Added support for passing a loginHint parameter to SSO and OAuth flows (#1124)

🛠 Fixes & Maintenance

• Return Refresh JWT – Fixed missing refresh JWT in response (#530)
• Removed deprecated templateId field (#538)
• Fix JWT Refresh with Cookies – Resolved errors occurring during JWT refresh when tokens are stored in cookies (#535)
• Fix createdTime typo in User object (#1096)

---

🔗 Full Changelog: Compare release/v1.7.6...v1.7.8