New Features

Getting started - minimal User onboarding setup (Business improvement)

completed: 05.01.2026

This feature introduces a minimal user onboarding setup in Getting Started and SaaS configuration. It adds an initial user onboarding configuration and enables self-registration flows that adapt to different authentication methods (including email OTP and passwordless). It also provides the ability to create test users (once a Tenant IAM is deployed and healthy) with a modal form that returns the generated password and surfaces any errors.

Getting started - minimal App (OIDC) setup (Business improvement)

completed: 05.01.2026

This feature streamlines the initial OIDC application setup so that existing OIDC configurations can be reused with minimal effort. It adds the discovery endpoint and clarifies client authentication against the token endpoint, including handling of clientId/clientSecret as configurable secrets rather than static values. The work also investigates and adjusts how security-related secrets are managed, refines wording around the OIDC Authorization Code Flow, and introduces options such as configurable PKCE enforcement, laying groundwork for more advanced configuration options in future iterations.

Getting started - minimal Auth flow setup (Business improvement)

completed: 16.12.2025

This feature enhances the IAM getting-started experience by expanding the minimal authentication flow. It adds configurable password policies to the username/password option, introduces a passkey-based authentication flow with E-Mail OTP fallback and sign-up support, and enables E-Mail OTP as a second factor for the username/password flow. It also ensures that password requirement descriptions correctly and dynamically reflect the configured policy, improves handling of FIDO-based passwordless descriptions, and fixes the post-signup behaviour so that users are seamlessly returned to and continued in the login flow even when FIDO is used.