| Change | Expected in Preview Orgs | Rollout to Production Orgs Expected to Start |
|---|---|---|
| Rate Limit Notifications for One App and Enterprise | October 10, 2018 | October 15, 2018 |
| OIDC Clients Can Initiate Logout with Expired Token | October 10, 2018 | October 15, 2018 |
| Change to User Link Editing Permissions | October 10, 2018 | October 15, 2018 |
| Bugs Fixed in 2018.41 | October 10, 2018 | October 15, 2018 |
| Previously Released Early Access Features 2018.41 Update | Available Now | Available Now |
When an org reaches its rate limit, the admin console will display a banner and the admin(s) will receive an email notification. These notifications will only appear on One App and Enterprise organizations.
Client-initiated logout now succeeds even when the ID token is no longer valid.
Editing the link between users now requires edit permissions for all users involved.
/logs endpoint with values for since and until that did not specify the time to milliseconds would sometimes return events outside of the specified time range. (OKTA-191533)/events endpoint would sometimes omit milliseconds from the published field. (OKTA-192568)The following features have already been released as Early Access. To enable them, contact Support.
| Early Access Features Available Now |
|---|
| Custom URL Domains |
| Custom Okta-hosted Sign-In Page |
| Custom Error Page |
| Linked Objects API |
| Token Management API |
| User Consent for OAuth 2.0 and OpenID Connect Flows |