Security by Sweden

Latest posts

PAS 4.7

PhenixID is proud to announce the new release of PhenixID Authentication Services (PAS) 4.7. The new release improves the stability, compatibility, and security of your solution and is recommended for all installations.

Read full release notes

 


 

Highlights

PAS 4.6.2

This new release includes defect fixes for the 4.6 release, and is recommended for all 4.6 installations.

Read full release notes


Bug fixes

  • PHX-3037 Add PKCE support to the OIDC RP Relay authenticator

    Now supports PKCE when acting as Relying Party in OIDC. See documentation of Open ID Connect Relying Party under Authenticators for how to enable in your setup

  • PHX-3049 WCAG MyApps

    MyApps GUI now updated to align with WCAG 2.1

  • PHX-3100 XML Parser security improvements

    Updated handling of XML parsing

  • PHX-3104 OIDCToSAMLBroker when session already available

    OIDCToSAMLBroker returns login data when an authenticated OIDC session already exists and prompt is set to “none”

Read the full release notes for PAS 4.6.2 here:

Read full release

PAS 4.6.1

This new release includes defect fixes for the 4.6 release, and is recommended for all 4.6 installations.

Read full release notes


Bug fixes

The 4.6.1 release includes the following fixes
  • PHX-3010 Add success URL redirect option to SithsEID

    SithsEID now includes the possibility to configure success URL

  • PHX-3024 SithsEidSignValve is not working in PAS 4.6

    Issue resolved

  • PHX-3051 Signing broken using HSM

    Problem when using HSM for signing now resolved

  • PHX-3064 SAML Request security improvements

    Security improvements when processing SAML requests

  • PHX-3070 The OIDCToSAMLBroker does not handle prompt=none

    Issue resolved. If parameter prompt is set to value “none”, no user interaction is needed

See patch release information for 4.6.1 and read the full release notes for Authentication Services 4.6 here:

Read full release

PAS 4.6

PhenixID is proud to announce the new release of PhenixID Authentication Services (PAS) 4.6 The new release improves the stability, compatibility, and security of your solution, and is recommended for all installations.

Read full release notes


Highlights

The highlights for the 4.6 release include updated HTTP API for BankID, Freja eID and SITHS, addition of Freja eID in “verify user” template and valves for BankID SIGN with QR code support.

  • BankID QR code support via HTTP API
  • Updated BankID logotype accorinding to BankIDs new release
  • Freja eID QR code support via HTTP API
  • Freja eID can now be used in the Verify User template
  • Use SITHS-eID as API authenticator
  • Possibility to disable appswitching in BankID authenticator scenarios

Improved functions

In addition, several features have received minor improvement including:

  • Key rollover for SAML Service Provider Authenticators
  • Secured sensitive endpoints as default
  • Added support for dynamically setting Assertion Consumer Service URL in the AuthNRequest for SAML Service Provider Authenticators
  • Disabled support for TLS versions prior TLS 1.2

Miscellaneous bug fixes

Defect fixes recommended for all users, including

  • PHX-2995 – Fixed PDF preview rendering issues while zooming and changing page
  • PHX-3003 – Resolved HSQLDB backup issues using default backup location
  • PHX-3007 – Mitigated cross-site scripting vulnerability

Read the full release notes for Authentication Services here:

Read full release

© 2024 PhenixID AB. All Rights Reserved.