ForgeRock Developer Experience

SDK for iOS changelog

iOS SDK 4.5.0

July 12, 2024


  • Added support for signing off from PingOne when using the centralized login flow with OAuth 2.0. [SDKS-3021]

  • Added the ability to dynamically configure the SDK by collecting values from the server’s OpenID Connect .well-known endpoint. [SDKS-3023]


  • Fixed issue causing SSL pinning configuration to be ignored in FRURLProtocol class. [SDKS-3239]

  • Removed scope validation from AccessToken initialization. [SDKS-3305]

iOS SDK 4.4.1

April 25, 2024




  • Removed storage field from the HardwareCollector class. [SDKS-3086]

iOS SDK 4.4.0

April 4, 2024


  • Added a new module for integration with PingOne Protect. [SDKS-2901]

    • Added support for the TextInput callback. [SDKS-546]

    • Added an interface for customizing the biometric UI prompts when device binding or signing. [SDKS-2990]

    • Added x-requested-with: forgerock-sdk and x-requested-platform: ios immutable HTTP headers to each outgoing request. [SDKS-2997]


  • Prevented the operation of device binding and signing features on simulators. [SDKS-2995]

iOS SDK 4.3.0

December 15, 2023


  • Added client-side support for the upcoming AppIntegrity callback. [SDKS-2630/SDKS-2761]

  • Added a new ephemeralAuthSession browser type for iOS13 and later. [SDKS-2707]

  • Added iat and nbf claims to the device binding JWS payload. [SDKS-2748]

  • Added ability to insert custom claims when performing device signing verification. [SDKS-2788]


  • Fixed an issue where the issuer parameter was not properly parsed when using AM 7.2.x. [SDKS-2653]

  • Fixed an issue related to inadequate cache control. [SDKS-2700]

  • Fixed an issue when the sfViewController setting in centralized login had entersReaderIfAvailable set to true. [SDKS-2746]

  • Fixed an issue with the device profile collector that affected phones with multiple sim cards in iOS 16.3 and earlier. [SDKS-2776]

  • Fixed an issue with device binding API access levels. [SDKS-2886]

  • Fixed an issue with removing a userkey from the local device repo. [SDKS-2887]


  • Updated the detection of Jailbreak status. [SDKS-2796]

  • Improved unit and end-to-end tests. [SDKS-2637]

iOS SDK 4.1.0

July 28, 2023


  • Added support for interceptors in the authenticator module. [SDKS-2545]

  • Added support for mfauth deep links in the authenticator sample app. [SDKS-2524]

  • Added an interface for refreshing access tokens. [SDKS-2563]

  • Added support for policy advice from IG in JSON format. [SDKS-2239]


  • Fixed an issue with parsing the issuer value in the URI provided by the combined MFA registration node. [SDKS-2542]

  • Added an error message about duplicated accounts while using the combined MFA registration node. [SDKS-2627]

iOS SDK 4.0.0

June 9, 2023 major


  • Added support for Passkeys. [SDKS-2140]

  • Added DeviceBinding callback support. [SDKS-1748]

  • Added DeviceSigningVerifier callback support. [SDKS-2023]

  • Added support for combined MFA registration in the Authenticator SDK. [SDKS-1972]

  • Added support for enforcing policies in the Authenticator SDK. [SDKS-2166]

  • Added an interface for listing and deleting WebAuthn credentials from the device. [SDKS-2279]

  • Added an interface to specify a device name during WebAuthn registration. [SDKS-2297]

  • Added a SwiftUI quick start example. [SDKS-2405]


  • Added error message description to the WebAuthnError enum. [SDKS-2226]

  • Updated the order of presenting the registered WebAuthN keys on the device. [SDKS-2251]

  • Updated Facebook SDK version to 16.0.1. [SDKS-1839]

  • Updated Google SDK version to 7.0.0. [SDKS-2426]

Incompatible changes

  • Changed the signature for a number of methods.

For more information, refer to Incompatible changes.

iOS SDK 3.4.1

November 15, 2022


  • Updated legacy encryption algorithm used for generation of cryptographic keys stored in Secure Enclave [SDKS-1994]

  • Fixed an issue related to push notifications timeout [SDKS-2164]

  • Fixed an unexpected error occurring during the decoding of some push notifications [SDKS-2199]

iOS SDK 3.4.0

September 22, 2022


  • Dynamic SDK Configuration [SDKS-1760]

  • iOS 16 Support [SDKS-1932]


  • Fixed build errors on Xcode 14 [SDKS-2073]

  • Fixed bug where the state parameter value was not verified upon calling the Authorize endpoint [SDKS-2077]

iOS SDK 3.3.2

June 20, 2022


  • Interface for log management [SDKS-1863]


  • Fixed memory leak in the NetworkCollector class [SDKS-1931]

iOS SDK 3.3.1

June 08, 2022


  • Add PushType.biometric support and BiometricAuthentication class for biometric authentication. Updated sample app to handle new Push types [SDKS-1865]


  • Fixed the bug when refreshing the access token we return the old token [SDKS-1824]

  • Fixed bug when multiple threads are trying to access the same resource in the deviceCollector and ProfileCollector [SDKS-1912]

iOS SDK 3.3.0

May 19, 2022


  • SSL pinning support [SDKS-1627]

  • Obtain timestamp from new push notification payload [SDKS-1665]

  • Add new payload attributes in the push notification [SDKS-1775]

  • Apple Sign In enhancements to get user profile info [SDKS-1632]


  • Remove "Accept: application/x-www-form-urlencoded" header from /authorize endpoint for GET requests [SDKS-1729]

  • Remove iPlanetDirectoryPro (or session cookie name) from the query parameter, and inject it into the header instead [SDKS-1708]

  • Fix issue when expired push notification displayed as "Approved" in the notification history list [SDKS-1491]

  • Fix issues with registering TOTP accounts with invalid period [SDKS-1405]

iOS SDK 3.2.0

January 27, 2022


  • Updated GoogleSignIn library to the latest version 6.1.0.

  • FRGoogleSignIn is now available through SPM.

iOS SDK 3.1.1

November 17, 2021


  • Added custom implementation for HTTPCookie for iOS 11+ devices, to support NSSecureCoding for storing cookies.

  • Changed all instances of Archiving/Unarchiving to use NSSecureCoding.

  • SecuredKey initializer now supports passing a Keychain accessibility flag.

  • SecuredKey now has the same default Keychain accessibility flag as the KeychainService ".afterFirstUnlock".

iOS SDK 3.1.0

September 25, 2021


  • Fixed an issue where the MetadataCallback was overriding the stage property of a node.

  • Fixed an issue which was affecting the centralized login feature.

  • Various bug fixes and enhancements for the Authenticator SDK.

Copyright © 2010-2024 ForgeRock, all rights reserved.