Authlib release version 1.7 and get support from the NLNet foundation

Authlib version 1.7

We recently released version 1.7 of Authlib, which includes:

• migration to joserfc as the replacement for the authlib.jose module. joserfc is based on authlib.jose but is a more modern library. The API have slightly evolved, and it includes new things, like type hints for instance. Read the authlib joserfc migration instructions for more details.
• support for OpenID Connect RP-Initiated Logout. This specification details how client applications can close user sessions at the Identity Provider. Combined with the coming OpenID Connect Back-Channel Logout (which does the opposite) it allows for centralized log-out among an entire application ecosystem.
• and of course, tons of bugfixes and polishing.

NLNet

In december 2025 we were accepted in the NLNet NGI0 grant. We want to thank warmfuly the NLNet Foundation for supporting us maintaining and developing Authlib. The joserfc migration as well as the OIDC RPinitiated implementation were the two first tasks we commited to achieve.

The next steps that we will tackle as part of this grant are:

• bug triaging and fixing. We know some tickets are waiting since a long time, and we plan to spend time on them.
• Type hints
• Async support
• FastAPI support
• OpenID Connect Back-Channel Logout
• OpenID Foundation Certification for the client-side, with auth-playground
• OpenID Foundation Certification for the server-side, by resurrecting and cleaning-up example-oauth2-server
• Security Audit with Radically Open Security

Stay tuned!