Release Notes for FIDO 2.7.0

What’s New

  • API Changes
    • Blocking AAGUID: Added support for AAGUID blacklisting, including GraphQL, gRPC, and REST APIs, along with a Dashboard UI for management.
    • Extending Management API with Discover Endpoint : Introduced an API definition to support pre-authentication flows in FIDO2, improving authentication efficiency.
  • Dashboard Changes
    • APP Config: Updated the Dashboard UI app configuration system to use attributes, improving flexibility and maintainability.
  • Infrastructure and Observability
    • Monitoring and Logging: Enhancements to monitoring and logging infrastructure to improve system observability and reliability.
    • Events and Usage Reporting: Improve implementation of events and usage reporting, providing better analytics and tracking capabilities.

Security Improvement and Bug Fixes

  • Prevent ClickJacking: Implement security improvement to prevent UI-based clickjacking attacks.