Features 4

• SMS country code selector for SMS OTP (#11373, #8891)

  Add country code selector for SMS OTP in LoginV1 to prevent defaulting to Switzerland (+41).

  LoginV1 SMS OTP
• Filter applications by client and entity ID (#11385, #11340)

  Support filtering by client_id and entity_id in ListApplications, and include project_id in the response.

  API v2
• Skip privileged DB commands during initialization if present (#11021, #10730)

  Initialization now skips privileged commands (create database/user) if the objects already exist, improving compatibility with managed DB services.

  Setup/CLI
• Arabic language support (#11161, #11146)

  Comprehensive Arabic language support for Login, Console, and Notifications.

  i18n

Bug Fixes 5

• Handle organization_id correctly on creation (#11396, #11269)

  The server now correctly honors the organization_id field during creation, previously favoring the deprecated org_id.

  API v2
• Password expiry check limited to local password users (#11344)

  Only check password expiry for local users with passwords, preventing federated (e.g., passkey-only) users from being prompted unexpectedly.

  LoginV1
• Passkey reauthentication fix (#11365)

  Allow reauthentication for expired or cleared sessions when Passkeys are the single authentication method.

  Login
• Consistency fix for password changes (#11371, #11345)

  Resolve race conditions and permission errors (/password/change) by awaiting session updates and ignoring transient membership errors.

  Login
• Correct success/failure URLs for implicit IdP flows (#11389, #11386)

  Fix incorrect redirect URLs ([::]:8080) in implicit IdP flows by using the proper host construction helper.

  LoginOIDC

Contributors 5