At authID.ai, we are pleased to announce that on Monday April 6th, 2026, the authID platform was updated to our platform version of 4.6.5. During this update, there will be a planned downtime window of approximately 20 minutes at 10 PM EST.

What's New

New Privacy Key Search OIDC Policy for Biometric-Only Authentication

A new OIDC policy called Privacy Key Search has been introduced to enable biometric-only authentication without requiring a username. This policy generates a Privacy Key from a selfie transaction and performs a tenant-wide search to identify a matching account, returning the first unique match or declining authentication if none or multiple matches are found. The flow allows up to three retry attempts when no match is identified, after which authentication is denied, and it ignores the login_hint parameter when not provided.

Skip Verify Prompt Option for Privacy Key Identification Flow

Added a new configuration option that allows skipping the VerifyPrompt screen during biometric identification flows. When enabled, this option bypasses the prompt to streamline the Privacy Key search authentication experience, where user verification confirmation is not required for the identification use case.

Added MFA Indicator to AMR Claims for Okta Integration

Updated the AMR claims returned during Privacy Key authentication to include an explicit mfa value. The amr array now returns ["user", "face", "mfa"], allowing Okta to formally recognize that multi-factor authentication has been performed and ensuring compatibility with customer Okta configurations that require MFA reporting.

Bugs Begone

We’ve taken care of a few sneaky bugs behind the scenes to give you a smoother, more reliable experience - no massive changes to shout about, just a little extra polish to keep everything running like clockwork.

If any, questions regarding the changes, please get in touch with us at [email protected].