Releases

Latest FoxIDs release notes and downloads.

Self-hosting downloads

Sign in to access self-hosting packages and Docker images. Access is managed at the organisational level, allowing your entire team to have individual accounts. Everyone with access can manage the pull secrets.

Docker images

Use your pull secret to authenticate with the registry.

Basic authentication

The Docker image registry uses Basic authentication, with your customer ID as the username and a pull secret as the password.

Latest Docker images

www.foxids.com/foxids:2.17.1 Restricted
www.foxids.com/foxidscontrol:2.17.1 Restricted

Pull secrets

Generate up to five long-lived secrets for image downloads.

Restricted

Release tags API

Use the releases/tags endpoint to get a JSON list of release names, Docker images, and asset file names.

Open releases/tags JSON

Version 1.15.21

Published Wednesday 5 March 2025

Accept claim types with spaces and change to log invalid claim types as a warning. Claim value with spaces was already supported.

Version 1.15.19

Published Monday 3 March 2025

PostgreSQL support additional IDs.
Default confirm account on create new user.
The maximum possible lifetime of the refresh token is set to a maximum of 4 years.
Hide the New tenant button in Control Client if FoxIDs is configured to use one main tenant.

Version 1.15.15

Published Thursday 27 February 2025

Complete single logout even though the application do not have logout URLs configured.
Improve the handling of claims with an empty value.
PG repository AdditionalIdExistAsync metod corrected.

Version 1.15.14

Published Tuesday 25 February 2025

Require 'delete' conformation text to delete a tenant and a track.
Additional IDs constraint check in repository code for CosmosDB and PostgreSql.
PostgreSql repository updated.

Version 1.15.11

Published Friday 21 February 2025

On login, validate if the password is in risk based on global password breaches and require password change.

Bugs resolved:

Save session information on all session groups bug.
Incorrect authentication profile field names i Control Client.

Version 1.15.10

Published Tuesday 18 February 2025

Improve OpenID Connect state handling.
Improve read OpenID Connect Discovery and SAM 2.0 metadata error message on time out.
Improve login sequence time put handling in Control Client.
Simplify log selection.

Version 1.15.8

Published Sunday 16 February 2025

Support for three different user identifiers; username, phone number and email.
Support for two-factor with SMS and email. Continued support for two-factor with authenticator app.
Two-factor do not require phone and email to be verified.
Support for task actions in claim transforms:
- Return error
- Start authentication
- Query internal users claims
- Query external users claims.
Support for local _local: claims in claim transforms
A setting added which make it possible to delete refresh token grants when a user change password.
Possible to search logs in all environments from master environment.

Bugs resolved:

It is possible to set a redemption claim on a external user which has already been redeemed.

Version 1.14.16

Published Thursday 6 February 2025

Resolved bug(s):

PostgreSQL do not support ! in a Query (LINQLINQ resulting in invalid tenant load.

Version 1.14.15

Published Friday 17 January 2025

SAML 2.0 authentication method, default disable login hint in Control Client.
Reverse trace logs to match the Control Client log view.
Show the Logs tab first in the Control Client.
Change session update warning logs to event logs.
Log template refresh interval change to 5 seconds.
Optimize logging.

Version 1.14.9

Published Tuesday 14 January 2025

Set 24 hours HTTP cache header (cache-control: max-age=86400, private) for OpenID Connect discovery .well-known/openid-configuration and SAML 2.0 SP / IdP Metadata.