2025-08-14
New Features
Cloud Configuration Storage Providers
Blob Storage in Azure Gov Cloud cloud can now be defined as a configuration storage provider. For more information, read the docs.
Secrets Providers
Key Vault in Azure Gov Cloud can now be defined as a secret provider. The entraIDHost query parameter as part of the MAVERICS_SECRET_PROVIDER environment variable connection string. For more information, please see the Azure Key Vault docs.
OIDC Provider
The OIDC provider can now optionally correlate back-channel requests with the resource owner's session. This can help you trace backchannel token requests to the resource owner. For more information, please see OIDC Provider Session Correlation.
OIDC applications
Orchestrator now supports the insecureSkipPKCE option. This field can be used to bypass using PKCE when using the Authorization Code grant type for public clients.
Per OAuth 2.0 Security Best Current Practice, public clients MUST use PKCE when using the Authorization Code grant type. The
insecureSkipPKCEoption should only be used for legacy apps that are unable to use PKCE. Avoid using this configuration unless absolutely necessary.