DATE:
AUTHOR:
Griffin Solot-Kehl
API SDK

2025.07.18 | Trusted Auth Tokens, text customization, fingerprinting improvements

DATE:
AUTHOR: Griffin Solot-Kehl

Trusted Auth Tokens

You can now turn any trusted JWT into a Stytch session with Trusted Auth Tokens.

This new feature allows you to:

  • Accept any JWT from a trusted third party whether it’s a marketplace partner, auth vendor, or your own system.

  • Register a Trusted Auth Token Profile with issuer details, audience, public keys, and optional claim mapping.

  • Exchange tokens via the /sessions/attest endpoint to create or extend Stytch sessions.

Trusted Auth Tokens helps you avoid building custom infrastructure or writing JWT validation code and middleware. You can now launch new integrations, support specialized auth flows, and streamline session management, all through a single API call. Read the full blog post to learn more!

Text customization for Stytch Auth SDKs

Full text customization is now available in the Stytch JS, Android, and IOS Auth SDKs, allowing you to replace any default text in our pre‑built login UI components. That means you can easily make adjustments, whether it's a small tweak, like changing "organization" to match your brand terminology, or providing complete translations to localize for different regions.

Here’s what’s new:

  • Pass custom strings easily using the new strings prop

  • Customize text dynamically with ICU MessageFormat, supporting variables (e.g., {organizationName}) and embedded components (e.g., <resendButton>).

  • Access the default English text catalog to simplify customization. For B2B auth node_modules/@stytch/vanilla-js/messages/b2b/en.po or Consumer auth node_modules/@stytch/vanilla-js/messages/en.po

For example, here's how you'd update the main login title to Spanish and customize the organization login prompt:

<StytchB2B
  config={...}
  strings={{
    'login.title': '¡Bienvenido!',
    'organizationLogin.title': 'Continue to {organizationName}',
  }}
/>

Override as few or as many strings as you’d like; Stytch automatically falls back to the default text when needed.

Check out text customization docs for B2B auth and Consumer auth SDKs as well as our Android, and iOS mobile SDKs.

Incognito fingerprinting improvements

We have improved stability for visitor_fingerprint in the fraud and risk prevention platform so that it is harder for bad actors to evade.

Where to find us

Stytch developer Slack

Join the discussion, ask questions, and suggest new features in our official Slack!

Get support

Check out the Stytch Forum or email us at support@stytch.com

Powered by LaunchNotes