Ory Kratos 1.2.0

Ory Kratos v1.2 is the most complete, scalable, and secure open-source identity server available. We are thrilled to announce its release!

The 107 commits since v1.1 include several improvements:

• Webhooks now carry session information if available.

• Transient Payloads are now available across all self-service flows.

• Sign in with Twitter is now available.

• Sign in with LinkedIn now includes an additional v2 provider compatible with LinkedIn's new SSO API.

• Two-Step Registration: An improved registration experience that separates entering profile information from choosing authentication methods.

• User Credentials Meta-Information can now be included on the list endpoint.

• Social Sign-In is now resilient to double-submit issues common with Facebook and Apple mobile login.

Two-Step Registration Enabled by Default: This is now the default setting. To disable, set selfservice.flows.registration.enable_legacy_flow to true.

• Improved account linking and credential discovery during sign-up.

• The return_to parameter is now respected in OIDC API flows.

• Adjustments to database indices.

• Enhanced error messages for security violations.

• Improved SDK types.

• The verification and verification_ui hooks are now available in the login flow.

• Webhooks now contain the correct identity state in the after-verification hook chain.

See the full changelog here.