v0.10.0

Features

Issuer API

Support for OpenID4VCI Draft 11 & 13: The issuer API now supports two OID4VCI versions. By default, the API will use Draft13 when creating issuance requests, but it can be configured via the standardVersion option in the body of the issuance request. Find an example here. Please note Draft 11 only works with W3C credentials.

The onboard endpoint now supports the creation of key & DID using AWS as an external KMS. Find an example here.

The onboard endpoint now supports the creation of key & DID using Azure as an external KMS. Find an example here

Wallet API

Create & secure holder keys via Azure as an external KMS. Learn more here.

AWS KMS Integration

New Auth Method: AWS authentication using EC2 Instance Metadata Service (IMDSv2) by requiring the user to pass a RoleName when generating keys. This is available in the crypto lib and the issuer/wallet APIs. Learn more here.

Delete Key Feature: Delete keys from the AWS KMS using the crypto lib or the Wallet API.

Fixes

Revocation policy available via the policy lib and verifier API no longer throws IllegalStateException error.

Breaking Changes

Issuer API

OpenID4VCI endpoints now have standard version prefix, e.g., draft11 or draft13. Clients use these endpoints, such as the wallet, to facilitate the credential exchange. The endpoints used to create credentials offers use by default draft13 for issuance, if no standardVersion parameter is provided.

What's Changed

• ci: update cache version by @mikeplotean in #820
• Release 0.9.0 by @mikeplotean in #818
• update JWKKey exporting to handle timestamp (double) attributes by @mr-sebbo in #824
• Core wallet by @waltkb in #826
• Aws instance auth refactor by @SuperBatata in #828
• wal-619 Delete AWS key by @SuperBatata in #819
• fix: add aws role auth to dev wallet ui by @SuperBatata in #830
• issuance JWT-property and well-known URL fixes by @severinstampler in #827
• Feat/revocation policy update by @mikeplotean in #831
• fix w3c payload scheme if issued as sd-jwt. by @severinstampler in #835
• fix: revocation policy status bit result validation by @mikeplotean in #838
• [Android, iOS] added expected/missing methods to platform source sets by @ivanpagac in #846
• Wal 313 fix sd property check by @severinstampler in #839
• fix issuance CORS issue, fix x5c validator test by @severinstampler in #850
• restore issuance status callbacks that got lost during refactoring by @severinstampler in #852
• WAL-697 : Added Azure kms integration by @SuperBatata in #833
• Input descriptor matching by @severinstampler in #856
• build(deps): bump the npm_and_yarn group across 2 directories with 7 updates by @dependabot in #823
• chore(deps): bump org.gradle.toolchains.foojay-resolver-convention from 0.8.0 to 0.9.0 by @dependabot in #848
• chore(deps): bump com.android.library from 8.7.2 to 8.7.3 by @dependabot in #847
• Aws sdk kms by @SuperBatata in #854
• chore(deps): bump the npm_and_yarn group across 2 directories with 3 updates by @dependabot in #857
• Feat/support for multiple versions by @chsavvaidis in #855
• Best-pattern: allow to attach 'cause' (detail) to new exception by @earizon in #844
• feat: 🎸 Introducing StatusList for MDoc by @dBucik in #822
• Fix/revert mdoc data model by @mikeplotean in #862
• fix listing of issuer credentials for issuer spec version by @severinstampler in #863
• fix: load trust-config when feature is enabled by @mikeplotean in #864

New Contributors

• @mr-sebbo made their first contribution in #824
• @earizon made their first contribution in #844
• @dBucik made their first contribution in #822

Full Changelog: v0.9.0...v0.10.0