Logto 2023 May update

May 30, 20232 min read
Logto 2023 May update

This month, we’ve improved our product quality and published several some articles that demonstrate how to use Logto as an OAuth or OIDC Identity Provider:

Cloud and Pricing

  • Logto Cloud is set to officially launch this summer! Get ready for an amazing experience.
  • We're currently putting the finishing touches on our pricing plans. They are designed to take into account your user engagement level, ensuring that you receive fair and reasonable billing even if your app experiences sudden user spikes.

Don’t forget to contact us for a special offer before preview ends. You can reply this email directly.

Feature updates

Introducing the "Always issue Refresh Token" configuration for web apps

Always issue Refresh Token toggle

Turning on this toggle ensures that Refresh Tokens are always issued, regardless of whether prompt=consent was included in the authorization request or if offline_access was specified in the scope.

  • POST /users/:userId/identities to link a social identity to a user
  • POST /connectors/:connectorId/authorization-uri to get the authorization URI for a connector

OpenAPI (Swagger) improvements

Except interaction APIs, API response schemas and status codes are now available in /api/swagger.json. It’s also available in https://docs.logto.io/api/.

OpenAPI documentation

Patch updates

  • Improved compatibility by parsing requests with application/json content-type for /oidc APIs.
  • Automated synchronization of trusted social email and phone information for newly registered users, irrespective of the sign-up identifier configuration.
    • For example: Previously, if the "email" was not set as a sign-up identifier (meaning a valid email connector had to be configured and enabled) and Google sign-in was added, the emails from new users would not be synchronized.
    • Starting from v1.4.0, this requirement has been removed, as "social sign-in only" scenarios are not uncommon in real-world cases.
  • Disable PKCE requirement for Traditional Web apps. Now Logto should be able to integrated with most projects that support OAuth identity providers such as ChatGPT plugins.