June 2025 monthly summary for kyma-environment-broker: Delivered a flexible IAM Issuer configuration enhancement for RequestAuthentication, enabling kyma-environment-broker to support multiple IAM issuers and to fall back to a single issuer when needed. This increases authentication source configurability and supports diverse enterprise identity providers, reducing integration time and deployment friction.

Month: 2025-05 — Implemented Multi-issuer OpenID Connect (OIDC) support for kyma-environment-broker (KEB). The change enables KEB to authenticate against multiple OIDC providers by iterating over an issuers list in authorization policy templates, with a safe fallback to a single issuer when the list is empty. The defaults were aligned by replacing all uses of oidcs with issuers and ensuring oidcs defaults are an empty array. This work is captured in commit 7170dab2df2e3c5e1f0baa47f196e08f3aa7c4da ("Support multiple OIDCs for KEB (#2030)"). Impact: Expands identity-provider interoperability, reduces operator setup friction for multi-provider environments, and improves security posture by explicit issuer management. The changes preserve backward compatibility for existing single-issuer configurations.