New Releases for the swiyu Public Beta Trust Infrastructure

Some components of the swiyu Public Beta Trust Infrastructure got new releases or will get a new version in the next days we would like you to inform about.

Upcoming: New Versions for Android and iOS Wallets

• Expand step for Android wallet to allow “jwk” in “cryptographic_binding_methods_supported”
• Contract step for iOS wallet to remove support for malformed “cnf” claim
• Feature: Activity list in swiyu wallets
• Feature: Issuer and verifier trust statement visualization
• Fix: Mark issuer & verifier as unknown
• Fix: Wallet fails on unsupported signing algorithms on issuer metadata
• Fix: Checked checkbox in darkmode no contrast

DID Toolbox Version 1.7.0

• Support for the post-quantum safe technique called Key Rotation with Pre-Rotation introduced. More details in changelog
• Minor fixes and refactoring, for details see all recent changes

Please note: New versions marked as “pre-release” may be not in-sync with the Public Beta environment.

DID Resolver Version 2.4.0

• Fixed: “replaceAll” has problems with potentially occurring $ and \
• Feature: Large scale workspace-based refactoring (further did_* crates added) to enable build automation
• Feature: New UniFFI-compliant method added: DidDoc::to_json(&self)

Generic Issuer Version 2.2.0

• Fixed: Possibly invalid credentials on bad usage
• Fixed offers in status DEFERRED or READY expire when the offer_expiration_timestamp has passed
• The SWIYU_STATUS_REGISTRY_AUTH_ENABLE_REFRESH_TOKEN_FLOW is now in the application.yaml set to true, as advertised as default behaviour in the readme.
• Updated ApiErrorDto and reused it for every error response to allow for a more consistent error response structure.
• For the complete overview, please refer to the changelog

Please note: This version is not yet pentested and thus not marked as “latest”. The contract step for “Token endpoint expected x-www-form-urlencoded” is in our backlog and will be planned for an upcoming sprint.

Generic Verifier Version 2.1.1

• Fixed: Validation of the “aud” claim in the holder binding jwt
• Fixed: Add verification, if issuer is legitimate
• Fixed: Only allow https status list requests
• Fixed: configuration_override field causes DataIntegrityViolationException
• Fixed: Secure by Default: accepted_issuer_dids
• Base functionality for DCQL, allowing using OID4VP v1 style alongside legacy DIF PE to query credentials.
• Optional End2End encryption with JWE according to OID4VP 1.0. Default is currently still unencrypted to allow wallets to start supporting it.
• Allow both vc+sd-jwt (SD JWT VC Draft 05 and older) dc+sd-jwt (SD JWT VC Draft 06 and newer) for presented VC format
• Other minor fixes and improvements, as you can read in the changelog

Please note: This version is not yet pentested and thus not marked as “latest”.

Updated Cookbooks

• Getting started with the swiyu Generic Issuer has been updated to match the new swiyu-issuer repository
• Getting started with the swiyu Generic Verifier has been updated to match the new swiyu-verifier repository

Thank you all for your patience during the migration phase of the Generic Issuer- and Verifier-repositories and your constructive feedback how we might improve the developer experience. It’s also great to see how the community engages and how you help each other.