1.7.14

This release expands SSO management capabilities, improves user status handling, and adds support for private role attributes.

🚀 New Features & Enhancements

• Expired User Status Support – Added the ability to pass and handle an expired user status in relevant user management flows (#710)
• Additional IdP Certificates for SSO – Added support for configuring and using additional IdP certificates in SSO setups (#712)
• SSO Setup Suite Tenant Settings – Exposed SSO Setup Suite settings via tenant management APIs (#713)
• Private Role Attribute – Added support for defining private role attributes to improve role data control (#714)

---

🔗 Full Changelog: Compare 1.7.13...1.7.14

1.7.13

This release adds support for customizing the client base URL, improves user retrieval capabilities, and includes a fix for management token validation.

🚀 New Features & Enhancements

• Custom Base URL – Added a base_url parameter to DescopeClient for flexible endpoint configuration (#691)
• Load Users by ID – Added the ability to retrieve users directly by their unique ID (#698)

🛠 Fixes & Maintenance

• Management Token Validation – Fixed validation logic for management tokens to ensure proper verification (#703)

---

🔗 Full Changelog: Compare 1.7.12...1.7.13

1.7.12

This release introduces an internal HTTP client abstraction for management key handling, adds audience override support, and includes new tenant session settings functions.

🚀 New Features & Enhancements

• HTTP Client Abstraction – Introduced a new HTTPClient to encapsulate and manage the different management key requirements across SDK operations (#633)
• Audience Override Support – Added automatic audience override when the provided value includes a Project ID (#674)
• Tenant Session Settings – Added functions for managing tenant session settings (#684)

---

🔗 Full Changelog: Compare 1.7.11...1.7.12

1.7.11

This release adds support for batch user patch operations.

🚀 New Features & Enhancements

• Batch User Patch – Support for patching multiple users in a single operation (#659)

Full Changelog: 1.7.10...1.7.11

1.7.10

This release introduces support for using the Descope FGA Cache Proxy from the Python SDK

🚀 New Features & Enhancements

• Descope FGA Cache Support: Response times of repeated FGA check calls, especially in high volume scenarios, can be reduced to sub-millisecond scales by re-directing the calls to a Descope FGA Cache Proxy running in the same backend cluster as your application. After setting up the proxy server via the Descope provided Docker image, set the fga_cache_url parameter to be equal to the proxy URL to enable its use in the SDK (#656)

🛠 Fixes & Maintenance

• Various dependency & CI tools version updates

Full Changelog: 1.7.9...1.7.10

1.7.9

This release adds a way to search users that must have multiple roles in a tenant as well as fixing jwt expiry error message.

🚀 New Features & Enhancements

• Allow searching for users with all roles in a tenant in #637

🛠 Fixes & Maintenance

• Adjust jwt expiry error messages in #634

Full Changelog: 1.7.8...1.7.9

1.7.8

This release introduces support for authentication management keys and outbound apps support.

🚀 New Features & Enhancements

• Auth Management Key – Added capability to use management key for Auth requests (#624)
• Outbound Apps Support – Added support for managing outbound apps (#621)

---

🔗 Full Changelog: Compare 1.7.7...1.7.8

1.7.7

This release introduces support for Python 3.13, embedded link signup, default role assignment, and enhancements to user and tenant search functionality.

🚀 New Features & Enhancements

• Embedded Link Signup – Added support for user signup via embedded links (#585)
• Default Role on Sign-Up – Allow setting a default role when creating new users (#588)
• Python 3.13 Support – Added compatibility with Python 3.13 (#599)
• Tenant Role Search Enhancements – Added tenant_role_ids and tenant_role_names parameters to user search results (#612)

🛠 Fixes & Maintenance

• Test User Support – Added support for managing test users through the User Management functions (#609)

---

🔗 Full Changelog: Compare 1.7.6...1.7.7

1.7.6

This release includes a minor fix to the impersonation flow.

🛠️ Fixes

• Stop Impersonation Path Fix – Corrected the API path used to stop an impersonation session to ensure proper request routing (#581)

---

🔗 Full Changelog: Compare 1.7.5...1.7.6

1.7.5

This release includes improvements to user invitation status, SSO enforcement settings, tenant management, FGA resource handling, and more.

🚀 New Features & Enhancements

• Expand Role Search Options – Add the ability to include project roles in role search (#550)
• Invite Users with Specific Status – Support inviting users with a predefined user status (#556)
• Custom Refresh Token Duration – Allow setting a custom refresh token duration during authentication (#559)
• Tenant API Enhancements – Introduced the ability to Enforce SSO or Disable a tenant using the enforce_sso and disabled fields in the tenant management API (#538)
• Save/Load FGA Resource Details – Added management APIs to persist FGA resource configurations (#562)
• Stop Impersonation API – Introduced an endpoint to explicitly stop an active impersonation session (#565)
• Add Template ID and Provider ID to Update User – Extended the update user request to support specifying a template and provider ID (#549)

---

🔗 Full Changelog: Compare 1.7.4...1.7.5