Released on 2026-01-15
New Features
Open ID Connect (OIDC)
Generic OIDC Connector: JWT Client Authentication
The generic OIDC identity fabric connector now supports JWT client authentication when communicating with upstream identity providers. This enables the Orchestrator to authenticate with identity providers that require JWT client assertions instead of client secrets.
Learn More about: Generic OIDC Connector
OIDC Apps: JWT Client Authentication Support
Local Development Only
This feature is not yet configurable in the Maverics Console, but it will be very soon.
OIDC Apps now support JWT bearer client authentication (RFC 7523) as an alternative to client secrets. This provides a more secure authentication mechanism for OAuth 2.0 client authentication.
JWT client authentication is available for the following grant types:
Authorization Code Grant
Token Exchange Grant
Learn More about: OIDC Apps
OIDC Provider
Scope are now optional for Authorization Code Grant
Scopes are no longer required when using the authorization code grant type with the OIDC Provider. This change improves compatibility with OAuth 2.0 clients that do not require OpenID Connect functionality.