Changelog
8.0.0 (2026-05-06)
⚠ BREAKING CHANGES
- authorization: Consolidate order enums to PaginationOrder
- api_keys: Separate organization and user API key types
- user_management: Consolidate order enums to PaginationOrder
- vault: Add BYOK key deleted event and consolidate key provider enum
- types: Consolidate pagination order enums
- authorization: Rename RoleAssignment to UserRoleAssignment
Features
- api_keys: Separate organization and user API key types (956386a)
- authorization: Add new role assignment listing endpoints (956386a)
- authorization: Consolidate order enums to PaginationOrder (956386a)
- authorization: Rename RoleAssignment to UserRoleAssignment (956386a)
- directory_sync: Add name field to directory users (956386a)
- docs: publish YARD API docs + llms.txt to GitHub Pages (#480) (117eeac)
- events: Add admin_portal source to event context actor (956386a)
- sso: Add name field to SSO profile (956386a)
- types: Consolidate pagination order enums (956386a)
- user_management: Add get JWT template endpoint (956386a)
- user_management: Add user API key management (956386a)
- user_management: Add user field to membership and organization membership (956386a)
- user_management: Consolidate order enums to PaginationOrder (956386a)
- vault: Add BYOK key deleted event and consolidate key provider enum (956386a)
7.1.2 (2026-05-06)
Bug Fixes
- decode legacy v6 sealed sessions on unseal (#479) (1d8b4aa)
- replace parameter-group hashes with typed variant classes (#473) (a66c15b)
- set canonical User-Agent header format (#476) (6728358)
7.1.1 (2026-04-29)
Bug Fixes
7.1.0 (2026-04-27)
Features
Bug Fixes
- add ruby/setup-ruby to release-please workflow (aa5ebd0)
- eagerly load configuration.rb to fix WorkOS.configure (#467) (eea391c)
- remove stale URN-prefixed alias files breaking Zeitwerk (#466) (92b2aa5)
- update Gemfile.lock in release-please PR and bump action pins (2aa0574)
- update Zeitwerk autoload for inflections.rb (#460) (4fa1332)
7.0.0 (2026-04-20)
This is a major release that introduces a fully redesigned SDK architecture. The SDK is now generated from the WorkOS OpenAPI spec, bringing type safety, consistent interfaces, and improved developer ergonomics.
High-Level Changes
-
Client-centric architecture: The SDK now revolves around an instantiated
WorkOS::Clientrather than module-level service calls. All product areas are accessed through client methods (e.g.,client.organizations,client.user_management,client.sso). -
Generated request/response models: Typed models replace raw hashes. Response models no longer inherit from
Hash— use accessor methods instead of bracket notation. -
Per-request overrides: The new runtime supports
request_options:for per-request API key, timeout, base URL, and retry overrides — useful for multi-tenant setups. -
Minimum Ruby 3.3+: The minimum Ruby version has been raised to 3.3.
-
Renamed services and methods: Several top-level services were renamed (e.g.,
WorkOS::Portal→client.admin_portal,WorkOS::MFA→client.multi_factor_auth). Method signatures now use explicit keyword arguments. -
Session management refactor: AuthKit session sealing, refresh, and authentication flows were overhauled with a dedicated
SessionManageron the client instance. -
New capabilities: Device code flow, public/PKCE clients,
auto_paging_eachpagination, andlast_responseobservability on all responses.
Migration Guide
For detailed instructions on updating your application, see the v7 Migration Guide.
6.2.0 (2026-03-06)
Features
- user-management: add directory_managed to OrganizationMembership (#446) (914d824)
- user-management: add invitation accept endpoint (#448) (b5b4da1)
Bug Fixes
6.1.0 (2026-02-10)
Features
- add support for totp_secret (#300) (c0a26bf)
- Include Feature Flags decoded from the JWT in the payload of a Session (#386) (31a0e79)
- workos-ruby: Add
connectiontoauthorization_url(#78) (c3a0e8e)