The release 3.6 of privacyIDEA opens the possibility to manage additional user attributes within privacyIDEA. Based on these, administrators can define policies for additional permissions. In addition, a new feature in privacyIDEA 3.6 is that administrators can now also use arbitrary token attributes as conditions in policies. These are additional ways that administrators can control privacyIDEA properties and define users’ permissions.
With version 3.2 of privacyIDEA, the administrator receives two new event handler modules to define rules that can modify both HTTP requests and HTTP responses of the REST API as required. This allows workflows to be highly customized. It is now possible to easily forward audit information to external log management tools such as Splunk or Logstash and process it there. The authentication at the REST-API has been extended so that a robust integration into any other application can be implemented.