Menu

Menu

Menu

Changelog

September 5, 2025

Know How It Was Verified

Know How It Was Verified

Know How It Was Verified

We’ve enhanced identity assurance data with ACR (Authentication Context Reference) and AMR (Authentication Method Reference)—making it easier to request, evaluate, and enforce authentication levels across regulated and high-trust environments.

Authentication Context (ACR)

Hopae now supports standards-based ACR values (RFC 6711, IANA OIDC Registry), extended with a developer-friendly numeric model:

  • acr (string): Standards-compliant URI (urn:hopae:loa3)

  • hopae_loa (int): Sortable numeric level (1 → 5)

  • hopae_loa_label (string): Human-readable name (“Substantial”)

This makes it simple to compare and enforce Levels of Assurance (LoA) across industries.


if (claims.hopae_loa >= 3) {
  // allow access to sensitive action
}
Authentication Method (AMR)

We now expose AMR values to show how a user authenticated:

  • Examples: ["pin"], ["biometric", "fido2"]

  • Enables step-up policies (e.g., requiring MFA or cryptographic binding)

  • Helps with compliance audits and adaptive access control

Developer Experience

  • Easy comparisons: Use hopae_loa (int) to enforce minimum LoA

  • Compliance ready: Use acr and amr in logs, audits, and reports

  • Discovery support: Exposed via OIDC discovery (acr_values_supported)

  • Sandbox ready: Test LoA and AMR flows with demo credentials

August 22, 2025

Sandbox Environment

Sandbox Environment

Sandbox Environment

We’re rolling out updates that make integration smoother, testing safe, and verification more global.

Introducing: Sandbox

We've created two distinct environments for enhanced development clarity.

  • Production: Real user verification with live credentials

  • Sandbox: Safe testing with test credentials only

This separation makes it clear exactly where you’re working, helping you avoid production mix-ups.

API documentation Refresh

Get started in minutes with our updated docs:

  • Quick setup guides to integrate faster

  • Detailed dataset explanations so you can predict outcomes upfront

Go to API docs

New eID Support

Personalauweis

We introduce Germany's official identity verification system that works with official German ID card. Users can connect via AusweisApp to verify

Dashboard Enhancement: Light and Dark Themes

Choose the display that suits your environment while reducing eye strain and battery usage with our new theme options.