About this Release

What's new in this release

WSO2 IS version 5.3.0 is the successor to version 5.2.0. It contains the following new features and enhancements:

WUM updates

This section lists out the features that are updated or introduced newly to WSO2 IS 5.3.0 via WUM updates.

Updated or newly introduced features	The date of the update

Updated or newly introduced features	The date of the update
Updated Creating Users Using the Ask Password Option feature. This fix allows you to add special characters such as `!#$%&'*+-=?^_` when updating a user's email address.	Effective from the 13th of June 2017
Updated User Account Suspension feature.	Effective from 13th of October 2017
Support to configure SAML 2.0 Web SSO to send query parameters that can be dynamically updated with each SAML request.	Effective from 15th of January 2018
Updated adding an application certificate to a service provider. The WUM update provides an easier method of managing application certificates.	Effective from 20th of January 2018
Enabling OAuth token encryption to encrypt OAuth2 access tokens, refresh tokens, consumer secrets, and authorization codes.	Effective from 15th of February 2018
Hosting Authentication endpoint on a different server for the purpose of having custom theming and branding.	Effective from 11th of May 2018
Support to do the following with regard to authentication handlers: Disable an authentication handler at the system level. Enforce required authentication mechanisms per resource. Change the priority order of any authentication handler at the system level.	Effective from 14th of May 2018
Support to configure signing and digest algorithms for passive sts ws-federation single sign-on	Effective from the 8th of January 2019

This release is a WUM-only release. This means that there are no manual patches and any further fixes or latest updates for this release can be updated through the WSO2 Update Manager (WUM). For more information, see Getting Started with WUM.

What has changed in this release

This section specifies features/functionality that were deprecated (might be removed in a future release) or removed.

Deprecated/Removed features and functionalities

Inbound OAuth 1.0a has been deprecated in this release.
OpenID 2.0 has been removed in this release and moved to the IS Connector store as it is now an obsolete specification and has been superseded by OpenID Connect. Alternatively, we recommend using OpenIDConnect instead.

Fixed and known issues

To explore the fixed issues and known issues in this release, and for other information related to the release, go to: https://wso2.org/jira/browse/IDENTITY.
For information on fixed and known issues for the base framework, go to: https://wso2.org/jira/browse/CARBON.

Compatible versions

For information on the Carbon platform version and Carbon Kernel version of WSO2 IS 5.3.0, see the Release Matrix.

All WSO2 products that are based on a specific Carbon Kernel version are expected to be compatible with each other. If you come across any compatibility issue, contact team WSO2.