New Features
AI Identity Gateway: MCP Bridge + Policy Enforcement
The AI Identity Gateway: MCP Bridge is now available. This enables teams that want to AI agents interact with internal or external APIs safely, with the same identity, authorization, and audit standards they already use for humans and applications.
This release introduces a secure, policy-driven way to connect MCP requests to your internal APIs using your existing identity stack. The Orchestrator operates as an MCP server and automatically maps MCP requests to API calls using your OpenAPI specifications.
Sandbox Available
All features are live in the Maverics Sandbox (https://maverics.ai/labs), providing a hands-on environment to test real agent-to-API behavior with identity, tokens, and policy enforcement. Contact sales@strata.io if you are interested in subscription pricing.
Strong Authorization with OPA
.png?sv=2022-11-02&spr=https&st=2025-11-18T07%3A58%3A21Z&se=2025-11-18T08%3A09%3A21Z&sr=c&sp=r&sig=zYokR5tHUMN9tXgVWfmWcp7DO3rE1FnQv%2BBLYeVxJbc%3D)
All inbound requests must include a valid JWT from approved identity providers. You can apply fine-grained Open Policy Agent policies written in Rego to enforce rules on access tokens, and you get detailed policy evaluation and audit logs for full visibility.
OAuth Token Exchange Support
The platform now supports RFC 8693 token exchange to maintain accurate identity context across multiple hops. This keeps impersonation and delegation clear and ensures downstream API calls use only the minimal required scopes with short-lived tokens.
Learn more: MCP Bridge
OIDC Provider
New UI
The OIDC app and user flow have now been upgraded to the new UI to match deployments.
Token Exchange Grant Type
In your OIDC app type editor you can now select Token Exchange as a grant type.
Access Token Policies
In your OIDC user flow you can now define OPA access token policies (in rego syntax).
Custom Scopes
You can now define custom scopes that can be requested and appear in your all your access tokens.
SAML App Type and User Flows
The SAML app and user flow editor now have the new user interface. With Access Policies you now use the or operator for more complex policy decisions.
Other Changes
The Canadian region is no longer available.