Account API
The new Account API is now available, giving end users direct API access without needing to go through the Management API. With this new API:
- Users can directly manage their profiles, including basic information, password, email, and phone
- Admins have full control over access settings for each field
- Integration is simple with
client.getAccessToken()for authorization - Social identities management is supported out of the box
Check out the Interact with Account API for more details.
Microsoft EntraID SSO connector enhancement
Added trustUnverifiedEmail setting for Microsoft EntraID OIDC SSO connector.
This addresses a common issue where email addresses from EntraID weren't being synced to Logto because they lacked explicit verification.
Organizations can now choose to trust these email addresses, enabling smoother user onboarding through EntraID SSO.
You can configure this setting in the EntraID OIDC SSO connector settings page in the Logto console or through the management API.
Sign-in experience improvements
Support contact information
Added support email and website information display on error pages.
When users encounter issues (like 404 errors or social callback failures), they can now easily find ways to contact support for assistance.
You may configure the support email and website info in the Sign-in experience > Content > Support settings in the Logto Console or through the management API.
Unknown session handling
Introduced unknown session redirect URL configuration.
This helps users who land on sign-in pages with expired sessions or through bookmarked URLs - instead of seeing a 404 error, they can be automatically redirected to a specified URL to restart their authentication process.
You may configure the unknown session redirect URL in the Sign-in experience > Sign-up and sign-in > Advanced options settings in the Logto Console or through the management API.