Skip to content
Truto
All updates

Changelog

Product update of the week: Year 4 • Week 24

Uday Gajavalli Uday Gajavalli ·
Enterprise SSO And SCIM Provisioning — Truto product update

New in Truto: Enterprise SSO, SCIM provisioning, and deeper observability

We are rolling out major enterprise features for scaling teams, including SSO, SCIM provisioning, and custom log forwarding to Datadog. Developers also get unified webhooks for Microsoft Teams, file storage permission APIs for Box and SharePoint, and deeper CRM coverage for Keap.

✨ Highlights

  • Added Enterprise SSO via OIDC and SAML 2.0
  • Added SCIM 2.0 provisioning with identity provider group mapping
  • Added Datadog log forwarding for API, queue, and execution logs
  • Added visual "Bring Your Own App" setup indicators and credential flows in the catalog
  • Added Unified Webhooks for Microsoft Teams instant-messaging/messages events
  • Added file-storage/permissions management for Box and SharePoint
  • Expanded Keap CRM support with new methods and fields across seven resources
  • Added User Directory Unified API support for Zoho Mail
  • Six new AI-ready integrations: Pinecone, Artie, HeyGen, Resend, Dwolla, and AssemblyAI

🤖 AI-ready integrations

New AI-ready integrations: Pinecone, Artie, HeyGen, and 3 more

  • Pinecone: Connect AI workflows to vector databases for retrieval-augmented generation.
  • Artie: Query game assets and delivery metadata from AI gaming assistants.
  • HeyGen: Generate and manage AI video avatars programmatically.
  • Resend: Enable AI agents to build, send, and manage email communications.
  • Dwolla: Connect AI financial tools to account-to-account payment workflows.
  • AssemblyAI: Empower AI applications with speech intelligence and transcription capabilities.

Security

Enterprise SSO (OIDC and SAML 2.0)

Enterprise SSO is now available. Teams can configure Single Sign-On using either OIDC or SAML 2.0 from your SSO settings.

For OIDC: provide your Client ID, Client Secret, and Issuer or Discovery URL. Truto generates the callback URL automatically.

For SAML 2.0: Truto provides the SAML ACS URL, SP Entity ID, and downloadable SP metadata. You can upload the IdP metadata XML or fill in the fields manually. An advanced option to sign AuthnRequests is also available.

SSO connections can be saved as inactive drafts and activated when ready. Admins can enforce SSO for all team members, and a break-glass admin account is preserved for emergency access.

Add SSO connection — protocol selection (OIDC or SAML 2.0)

Configure SSO with OIDC — callback URL, client credentials, issuer URL, active and enforce toggles

Configure SSO with SAML 2.0 — ACS URL, SP Entity ID, metadata download, IdP metadata XML upload, AuthnRequest signing

SCIM Provisioning

SCIM 2.0 provisioning is now available. Teams can configure their identity provider to automatically provision and deprovision users and groups in Truto.

Truto provides a SCIM Base URL and a bearer token for authentication. Group mapping lets admins map IdP groups to Truto roles and environment access. A user's effective access is the union across all their groups, with the admin role taking precedence.

SCIM endpoint configuration — Base URL, bearer token, sync status, and group mapping

Developer Experience

Bring Your Own Observability

Teams can now forward Truto logs directly to their own observability platform, starting with Datadog.

Configure a destination with your API key, site and region, optional tags, and select which log types to forward. Supported logs include API request and response logs, Durable Object execution logs, and Queue logs. You can configure multiple destinations and toggle log forwarding on or off independently.

Add observability destination — Datadog with API key, site/region, tags, active toggle, and log type selection

OAuth App Setup Indicator (BYOA)

We added a "Requires OAuth app setup" indicator to integration catalog cards and the install flow for OAuth 2.0 BYOA integrations.

Integrations that require customers to bring their own OAuth app now show a clear visual badge. The install flow provides the redirect URL, credential fields, and a skip option to configure it later.

Integration catalog showing BYOA badge on integration cards

BYOA install flow with OAuth credentials — Client ID, Client Secret, Scopes, and Redirect URL

BYOA install flow — skip credentials and add them later in Settings

Webhooks

Unified Webhooks for Microsoft Teams

We added unified webhooks for Microsoft Teams tenant-wide channel and chat message events. Developers will now receive normalized instant-messaging/messages payloads whenever messages are created, updated, or deleted.

Unified APIs

File Storage Permissions for Box and SharePoint

Both Box and SharePoint now support the file-storage/permissions resource. Developers can use the list, get, create, update, and delete methods to manage file and folder access control through Truto's unified model.

Zoho Mail User Directory Support

Zoho Mail is now supported in the User Directory Unified API. You can now use the list and get methods in user-directory/users, and the list method in user-directory/organizations.

Integration Improvements

Keap CRM updates

We expanded our Keap CRM coverage across multiple resources with new methods and fields:

  • crm/accounts: Added delete method. Added created_at and updated_at to the list response.
  • crm/contacts: Added tags to the list response.
  • crm/users: Added get method.
  • crm/tasks: Added opportunity to the list response.
  • crm/stages: Added get and delete methods.
  • crm/opportunities: Added delete method.
  • crm/custom-fields: Added list method.