We are pleased to announce the introduction of a new feature flag, "ClickToSign", with this release. This feature flag brings forth notable implications for both existing and new organizations. Existing organizations as well as new organizations will have access to the ClickToSign signing method. However, we now offer the added flexibility of being more selective in activating this product feature to keep the UI a bit more clean. Furthermore, on-premise customers can configure on a per-organization basis if they want to allow ClickToSign as signing method.

By implementing this feature flag, we empower organizations to tailor their signing preferences to their specific needs, ensuring a more customized and efficient experience.

For further details, please refer to Feature Flags.

Introducing SPID Integration in eSignAnyWhere!
We are thrilled to announce the upcoming feature release of SPID integration into eSignAnyWhere, which will greatly enhance the signing process. SPID (Sistema Pubblico di Identità Digitale or Public Digital Identity System) will now be available as an OAuth Ident Provider, allowing seamless and secure authentication.

Key features of SPID integration:

1. Signer OAuth Ident - With SPID integration, users can now enable SPID as their OAuth Ident for a streamlined and efficient signing process.
2. Enhanced Security - SPID will serve as the OAuth Ident provider, ensuring robust security measures during the authentication process.
3. Recipients who opt for SPID will have this Public Digital Identity System configured as their method of authentication.

Moreover, the system administrator can now define, for specific identification providers such as SPID, to overrule the configuration of the Local Registration Authority (LRA) for issuing Namirial Disposable Certificates.

Further information can be found here: SPID Identification via OIDC and Namirial RemoteSignaturePlugin#SSPVersions%3E=23.31

Prepare to elevate your e-signing process with the SPID integration in eSignAnyWhere. Stay tuned for this exciting release, as we continue to prioritize security, efficiency, and user satisfaction.

We are pleased to announce the introduction of a new feature flag, "SmsOtpAuthentication", with this release. This feature flag brings forth notable implications for both existing and new organizations. Existing organizations will continue to have access to SMS authentication. However, we now offer the added flexibility of being more selective in activating this product feature to keep the UI a bit more clean and to avoid the risk of "hidden sms costs" with some packages. Furthermore, on-premise customers can configure on a per-organization basis if they want to allow SMS sending for authentication purpose.

For new organizations, the following outcomes arise:

1. Trial (Free) and Personal Packages:
   1. SMS authentication will not be available for all new organizations opting for these packages.
2. Professional and Business Packages:
   1. New organizations subscribing to the Professional and Business packages will have access to SMS authentication.

By implementing this feature flag, we empower organizations to tailor their authentication preferences to their specific needs, ensuring a more customized and efficient experience.

For further details, please refer to Feature Flags and Admin Web Guide eSignAnyWhere AdminWeb (restricted access).

Introducing Preemptive Basic Authentication and flexible timestamp validation options:

• We are thrilled to announce the addition of preemptive basic authentication to our HTTP-based communication protocols.
  • With the preemptive basic authentication, it is possible to proactively send the authentication credentials without waiting for a server challenge. Can be configured in Server Core global configuration.
• Introducing flexible validation options for timestamp URIs
  
  • The addition of the new configuration section enables seamless switching of validation implementations for specific timestamp URIs. This utilizes regular expressions to provide granular control over the validation process. We recognize the importance of security and integrity when handling timestamp URIs, and this enhancement aligns perfectly with our commitment to delivering robust security solutions. By allowing easy customization of the validation implementation, Server Core equips administrators with a powerful tool to adapt and evolve their systems according to changing requirements and best practices. Can be configured in Server Core global configuration.

Introducing enhanced flexibility empowering timestamp customization:

• We are pleased to announce a powerful new feature in Server Core's global configuration. The addition of a dedicated configuration section that allows effortless disabling of the "Nonce" parameter validation for specific timestamp URIs. This functionality, driven by regular expressions, empowers administrators with greater control over their validation processes. We understand that security and customization are paramount in today's evolving landscape. By incorporating this feature, Server Core demonstrates its commitment to empowering administrators with tools to meet their security and compliance needs effectively.

These features support the seriousness in our strategy to enter new markets - including Latin America and Switzerland - through increased flexibility of integration options.

In addition to various bug fixes, this version also addresses several moderately severe security issues.

Document retention can be enforced for an organization via the Admin Web. If the limit is changed (in the Admin Web) to a value which is more restrictive than the setting in the organization, the organization is reconfigured to match this new limit.

For detailed information see Admin Web Guide eSignAnyWhere AdminWeb#Details

SOAP has been removed in this release as already announced in the eSignAnyWhere version 20.28 and 20.42. See Migration Guide - SOAP to REST

REST API v1 and v2 were announced as deprecated (Migrate REST API clients from v1, v2, v3 to v4) and are now being removed in this release.