Version 3.25 (January 2024)
New features and enhancements
Custom authenticator application selection for Secure Channel operations
You can now select a specific authenticator application to use when you initiate an authentication or signature validation process using Secure Channel.
The SOAP communication interface now supports the following attributes to select a specific authenticator application:
- CREDFLD_CRYPTO_APP_INDEX. The index of the authenticator application to use when you initiate an authentication process with the getSecureChallenge command.
- CREDFLD_CRYPTO_APP_NAME. The name of the authenticator application to use when you initiate an authentication process with the getSecureChallenge command.
- SIGNFLD_CRYPTO_APP_INDEX. The index of the authenticator application to use when you initiate a signature validation with the genRequest command.
- SIGNFLD_CRYPTO_APP_NAME. The name of the authenticator application to use when you initiate a signature validation with the genRequest command.
If you do not specify a particular authenticator application, the first applicable authenticator application that is allowed by the effective policy will be used (current default behavior).
Version 3.24 (July 2023)
No changes.
Version 3.23 (July 2022)
New features and enhancements
Supported platforms and other third-party products
Software libraries
OAS Authentication SDK now includes the following (updated) third-party libraries:
- Apache Log4j Core 2.17.1
Fixes and other updates
Issue OAS-12270 (Support case CS0085940): Wrong parameter in cancelAuthSignatureRequest example (Documentation)
Description: In the OAS Authentication SDK SOAP Reference, the cancelAuthSignatureRequest example contains an incorrect parameter (requestKey). The correct parameter is requestKeyMessage.
Affects: OAS Authentication SDK 3.17–3.22
Status: The documentation has been updated.
Known issues
Issue 44570: New client components for multi-device licensing (MDL) not automatically created (OneSpan Authentication Server Configuration Wizard)
Description: When running the Configuration Wizard and registering the SDK as part of an advanced installation, the client components for the new multi-device licensing (MDL) functionalities are not created automatically.
Affects: OAS Authentication SDK 3.7–3.25
Status: Before using the sample websites, the client components for MDL must be created manually.
Version 3.22 (October 2021)
New features and enhancements
Authenticator/host synchronization
A new syncTokenAndHost command has been added to the SOAP authentication interface that allows users to synchronize the device time or event counter of their authenticators with the authentication server.
This is useful for scenarios where an authenticator has not been used for a long period of time or the authenticator clock has drifted too far. The synchronization supports time- and event-based authenticator applications.
Version 3.21 (January 2021)
No changes.