Changelog
Next ReasonNext Reason CareersNext Identity Status
Back to All

v1.3.6 - Jan 11, 2022

about 3 years ago

The following changes are included in this release.

New Feature

Next Identity Journeys and Next Identity API

Password Inspector extension updated with breached password protection feature

Our new Password Guard feature validates customer passwords against a repository of known database breaches to ensure they're not relying on compromised passwords and expose themselves to credential stuffing attacks.

⭐ Added a new parameter to resend the invitation link

A new optional resend parameter has been added that let's you resend the invite link to the end user during pre-registration. The invite link is either sent to the email address or mobile phone number, whichever is configured in the request.

Enhancements

Next Identity Journeys

⭐ Cookies with sensitive information are now transmitted through encrypted channels

Cookies containing sensitive information or sessions are now transmitted through an encrypted channel, increasing security.

⭐ Security enhancements against possible vulnerabilities

Implemented security enhancement to protect against MIME sniffing and browser cache weaknesses.

⭐ Standardized query patterns for internal URLs

Query patterns have been standardized to further reduce error rates in the /reset-password work flow.

⭐ Birthdate can only be updated or set once

The number of times the birthdate profile field can be updated (for pre-registration) or set (for new registration) has been limited to only once.

Next Identity API

⭐ Return uuid on the /register endpoint

The uuid is now also returned upon successful submission to the /register endpoint.

Bug fixes

Next Identity Journeys

✅ Multiple error responses on the the Reset Password screens

An issue where the end user receives a 500 Internal Server Error response code when they try to reset a password with the wrong passcode has been fixed. Now, if an end user sends an incorrect reset code, they will be redirected to the Forgot Password screen.

✅ Occasional 500 Internal Server Error response code on Progressive Profile screen

Fixed an issue where a new access token is not being returned, causing the Progressive Profile screen to fail and returning a 500 Internal Server Error response code.

Next Identity API

✅ Error on the /change-password endpoint

Fixed an issue on the /change-password endpoint that was reporting multiple error responses.