Access Gateway

Adds a configuration option to certrain models to skip user validation via ID Server when appropriate, simplifying some scenarios.

Improvements to the handling of the user’s last used authentication method, improving user experience between sign-ins.

Enhances modForms so that FIDO methods are hidden when publicKeyCredentials are not supported by the client, preventing user confusion on unsupported devices.

Corrects the error message shown when a locked user attempts to sign in using FIDO. The message now clearly indicates that Pointsharp ID rejected the user.

Ensures that modules such as modRewrite receive the correct server response Content-Type, resolving issues where the response header was not properly set.

Fixes an issue where the authentication policy user agent matching in modAuth was not case-insensitive, leading to inconsistent policy evaluation.

Resolves a problem where using the keyboard up/down arrow keys in the login form caused the selection to jump two steps instead of one.

Fixes an issue where an expanded dropdown in the login form remained open when the user pressed the Tab key, improving keyboard navigation.

Addresses an unhandled exception in the LoginApp module that occurred when the reply from ID Server contained multiple memberof values.

The Access Gateway now correctly uses ID Server user attribute values by sending them back as claims (claim type = attributeKey, value = attributeValue).

Fixes an exception in modEasV2 triggered when a stored folder ID was missing (for example, after adding a custom folder that was not present in the ID Server folder list). The module now requests a fresh folder list from the EAS protocol when needed.