IdentityServer Releases
Released: Jun 16, 2026
Updates in v8.0.2
Fixes
- Fixed a license validation exception when using AddConfigurationStore without a license that includes the Dynamic Identity Providers feature. The EF configuration store registers an IIdentityProviderStore implementation, which incorrectly triggered a license check for Dynamic Identity Providers even when the feature was not in use.
Released: Jun 2, 2026
Updates in v8.0.0
Features
- SAML 2.0 Identity Provider
- IdentityServer can now act as a full SAML 2.0 Identity Provider, allowing enterprise and legacy applications that require SAML to authenticate against your server alongside OpenID Connect clients. It supports:
- SP-initiated SSO via HTTP-Redirect and HTTP-POST bindings.
- Single Logout (SLO) with front-channel notifications.
- Per-SP assertion signing.
- NameID format support.
- AuthnContext class mapping, per-SP claim mappings.
- Metadata endpoint.
- Your existing login UI...
Released: Mar 13, 2026
Updates in v7.4.7
Features
- Updated Duende.IdentityModel dependency to 8.0.1.
Released: Feb 12, 2026
Updates in v7.4.6
Fixes
- Made ServerSideSessionCleanupHost.StopAsync idempotent (prevent exceptions if it is called multiple times).
- Do not escape '+' character in x5c of jwks.
Released: Jan 22, 2026
Updates in v7.4.5
Fixes
- Fixed a regression where the '+' character was not treated as a space in query params.
Released: Dec 30, 2025
Updates in v7.4.4
Fixes
- Fixed an issue where specific service registration scenarios would fail due to constructor ambiguity.
Released: Dec 9, 2025
Updates in v7.4.3
Fixes
- Fixed an issue where claims were duplicated.
Released: Dec 4, 2025
Updates in v7.4.2
Fixes
- Fixed IdentityServerLicenseValidator log formatting issue.
Released: Dec 3, 2025
Updates in v7.4.1
Fixes
- Fixed incorrect CSP hash constants in check session endpoint.
Released: Dec 2, 2025
Updates in v7.4.0
Features
- Set HTTP activity name on routing - Set the DisplayName of the activity associated with the incoming HttpRequest when IdentityServer routes are matched. This makes the IdentityServer route names appear in OTel traces.
- Skip front-channel logout iframe when unnecessary - Enabled the UI to skip rendering the front channel logout iframe when it is not needed.
- Callback Option for Path Detection in Dynamic Providers - Added a new option for Dynamic Providers to increase flexibility when...