Release 2026.01.0 (#5884)

packages/@okta/vuepress-site/data/error-codes.json

@@ -1,6 +1,6 @@
 {
-  "release" : "2025.12.1",
-  "build" : "2025.12.1-begin-363-g0c38ff666b0f",
+  "release" : "2026.01.1",
+  "build" : "2026.01.1-begin-91-gb3781c3067c5",
   "errors" : [ {
     "title" : "API validation exception",
     "includesExceptionMessage" : true,
@@ -1961,5 +1961,21 @@
     "errorCode" : "E0000263",
     "errorSummary" : "Attempted to assign a duplicate standard role assignment to an admin",
     "errorDescription" : null
+  }, {
+    "title" : "Required active custom telephony provider credential for phone authenticator exception",
+    "includesExceptionMessage" : true,
+    "statusCode" : 400,
+    "statusReasonPhrase" : "Bad Request",
+    "errorCode" : "E0000264",
+    "errorSummary" : "You must have an active telephony inline hook or at least one active custom telephony provider credential to activate and use the Phone authenticator.",
+    "errorDescription" : null
+  }, {
+    "title" : "Device registration already in progress exception",
+    "includesExceptionMessage" : false,
+    "statusCode" : 409,
+    "statusReasonPhrase" : "Conflict",
+    "errorCode" : "E0000265",
+    "errorSummary" : "Device registration is already in progress for this device.",
+    "errorDescription" : null
   } ]
 }

packages/@okta/vuepress-site/data/event-types.json

@@ -1,6 +1,6 @@
 {
-  "release" : "2026.01.0",
-  "build" : "2026.01.0-begin-151-gd582b8e92fbf",
+  "release" : "2026.01.1",
+  "build" : "2026.01.1-begin-91-gb3781c3067c5",
   "categories" : [ {
     "id" : "access-gateway",
     "name" : "Access Gateway"
@@ -19183,7 +19183,7 @@
       "schema" : {
         "debugData" : "UserAccessDebugData",
         "actor" : null,
-        "targets" : [ "UserAccessResourceDetails" ],
+        "targets" : [ "UserAccessResourceDetails", "BotProtectionConfigurationResourceDetails" ],
         "changeDetails" : [ ]
       }
     }, {
@@ -19975,7 +19975,7 @@
       "schema" : {
         "debugData" : "UserLifecycleDebugData",
         "actor" : null,
-        "targets" : [ "ResourceDetails" ],
+        "targets" : [ "BotProtectionConfigurationResourceDetails" ],
         "changeDetails" : [ ]
       }
     }, {
@@ -20605,7 +20605,7 @@
       "schema" : {
         "debugData" : "UserAuthenticationDebugData",
         "actor" : "UserAuthenticationResourceDetails",
-        "targets" : [ "UserAuthenticationResourceDetails", "CaptchaVerifyResourceDetails", "UserIdentifierResourceDetails" ],
+        "targets" : [ "UserAuthenticationResourceDetails", "CaptchaVerifyResourceDetails", "UserIdentifierResourceDetails", "BotProtectionConfigurationResourceDetails" ],
         "changeDetails" : [ ]
       }
     }, {
@@ -48821,6 +48821,35 @@
           }
         }
       },
+      "BotProtectionConfigurationResourceDetails" : {
+        "name" : "BotProtectionConfigurationResourceDetails",
+        "properties" : {
+          "enforcement_type" : {
+            "type" : "String",
+            "sensitive" : false,
+            "personal" : false,
+            "customer" : false,
+            "format" : "enum",
+            "examples" : [ "OKTA_CHALLENGE" ]
+          },
+          "mode_type" : {
+            "type" : "String",
+            "sensitive" : false,
+            "personal" : false,
+            "customer" : false,
+            "format" : "enum",
+            "examples" : [ "DISABLED", "LOG_ONLY", "ENFORCED" ]
+          },
+          "level" : {
+            "type" : "String",
+            "sensitive" : false,
+            "personal" : false,
+            "customer" : false,
+            "format" : "enum",
+            "examples" : [ "LOW", "MEDIUM", "HIGH", "ANY" ]
+          }
+        }
+      },
       "BrandResourceDetails" : {
         "name" : "BrandResourceDetails",
         "properties" : {
@@ -52625,7 +52654,7 @@
             "personal" : false,
             "customer" : false,
             "format" : "enum",
-            "examples" : [ "CAPTCHA" ]
+            "examples" : [ "OKTA_CHALLENGE" ]
           },
           "mode" : {
             "type" : "String",

packages/@okta/vuepress-site/data/oauth2-error-codes.json

@@ -1,6 +1,6 @@
 {
-  "release" : "2025.12.1",
-  "build" : "2025.12.1-begin-363-g0c38ff666b0f",
+  "release" : "2026.01.1",
+  "build" : "2026.01.1-begin-91-gb3781c3067c5",
   "errors" : [ {
     "title" : "Access denied",
     "statusCode" : 403,
@@ -141,6 +141,13 @@
     "internalErrorCode" : "access_denied_by_aerial",
     "errorCode" : "access_denied",
     "errorDescription" : "The Aerial service denied the request."
+  }, {
+    "title" : "Aerial admin access denied",
+    "statusCode" : 403,
+    "statusReasonPhrase" : "Forbidden",
+    "internalErrorCode" : "aerial_admin_access_denied",
+    "errorCode" : "access_denied",
+    "errorDescription" : "The authentication policy on your Aerial org must meet or exceed the authentication policy on the org you're accessing."
   }, {
     "title" : "Disallowed network zone",
     "statusCode" : 403,

packages/@okta/vuepress-site/docs/concepts/policies/index.md

@@ -201,6 +201,19 @@ Identity Threat Protection with Okta AI is an identity threat solution that comb
 
 * [Session violation enforcement policy](https://developer.okta.com/docs/api/openapi/okta-management/management/tag/Policy/#tag/Policy/operation/createPolicy) (`POST_AUTH_SESSION`): This policy defines the enforcement actions that Okta takes after it detects a session violation. For Admin Console tasks and further information, see [Session protection](https://help.okta.com/okta_help.htm?type=oie&id=csh-continuous-access-evaluation).
 
+### Client update policies
+
+The client update policy allows admins to manage the delivery and acceptance of updates for specific client apps, such as Okta Verify.
+
+Use this policy to define rules that control how the end user gets updates across different device platforms. For example, you can define rules for the following use cases:
+
+* Enforce immediate updates to address critical security vulnerabilities
+* Defer non-critical updates for a specified period to align with internal change management processes
+
+For details on the object model and configuring rules programmatically, see the [Policies API](https://developer.okta.com/docs/api/openapi/okta-management/management/tag/Policy/#tag/Policy/operation/listPolicies).
+
+To learn more about implementing and managing this feature in the Admin Console, see [Release controls policy](https://help.okta.com/okta_help.htm?type=oie&id=ext-ov-release-controls).
+
 ### API access policies
 
 An [OAuth Authorization Policy](https://developer.okta.com/docs/api/openapi/okta-management/management/tag/AuthorizationServerPolicies/) manages authorization between clients and Okta. The access policy is specific to a particular client app. The rules it contains define particular token lifetimes for a given combination of grant type, user, and scope.

packages/@okta/vuepress-site/docs/guides/index.md

@@ -71,6 +71,7 @@ guides:
  - mobile-idx-sdk-overview
  - multiple-identifiers
  - mobile-swift-configure-redirect
+ - native-to-web-sso
  - scim-provisioning-integration-overview
  - scim-provisioning-integration-prepare
  - scim-provisioning-integration-connect

packages/@okta/vuepress-site/docs/guides/native-to-web-sso/index.md

@@ -0,0 +1,7 @@
+---
+title: Configure Native to Web SSO
+excerpt: Learn what Native to Web SSO is and how to use it
+layout: Guides
+sections:
+  - main
+---