Duende Software Blog

Upcoming Duende IdentityServer 7.2 Preview 1 Release

Khalid Abuhakmeh Customer Success Engineer at Duende Software Khalid Abuhakmeh

published on January 29, 2025

After our recent 7.1 release of IdentityServer, we’re moving toward version 7.2 and collaborating with the IETF to standardize several specifications. Even though we’re busy, we thought you’d appreciate an update on what’s next. For early adopters, you now have access to IdentityServer 7.2 Preview 1, which includes enhancements, bug fixes, and general improvements to the codebase. This release is now published on all official channels and IdentityServer NuGet packages are available for testing.

Duende IdentityServer 7.1 New Year's Release

Khalid Abuhakmeh Customer Success Engineer at Duende Software Khalid Abuhakmeh Joe DeCock Principal Software Engineer at Duende Software Joe DeCock

published on January 15, 2025

Happy New Year! Duende IdentityServer 7.1 is a new release we’re excited to share with you. In this article, we will discuss some exciting enhancements and breaking changes that software developers should be aware of when upgrading from previous versions.

Security hotfix for Duende.AccessTokenManagement.OpenIdConnect

Joe DeCock Principal Software Engineer at Duende Software Joe DeCock

published on November 8, 2024

We recently published Duende.AccessTokenManagement.OpenIdConnect 3.0.1, a security hotfix which addresses CVE-2024-51987, a medium-severity security issue that can cause refreshed access tokens to be cached and used for the wrong user.

We encourage everyone using Duende.AccessTokenManagement.OpenIdConnect 3.0.0 to update to version 3.0.1.

Duende Software Blog

Upcoming Duende IdentityServer 7.2 Preview 1 Release

Duende IdentityServer 7.1 New Year's Release

Security hotfix for Duende.AccessTokenManagement.OpenIdConnect

More

DPoP Package Updates

Pushed Authorization Request (PAR) Support in ASP.NET Core

Duende Software – The Next Chapter

Duende.AccessTokenManagement 3.0