Prototype PID Issuer
Release notes
1.5.0
- Adapts flow variant B' according to Architecture Proposal for the German eIDAS Implementation – Release V2.2:
- Accept grant type
urn:ietf:params:oauth:grant-type:seed_credentialfor token request - Issue seed credential and initialize PIN retry counter on credential instead of finish authorization request
- Expect and verify PIN and device key signed nonces as JWTs for seed and final credential issuance
- Rename nonce to session endpoint and provide its URL in credential issuer metadata
- Accept grant type
- Adapts both, flow variant B and flow variant B' according to Architecture Proposal for the German eIDAS Implementation – Release V2.2:
- Use credential format
mso_mdoc_authenticated_channelfor authenticated channel flows - Pass in relying party's ephemeral public key through JSON attribute
verifier_pubin credential request
- Use credential format
1.4.0
- Adds flow variant B' with PIN management.
- Adds flow variant C''.
- Disables client attestation for all flow variants, except flow variant B'.
1.3.0
- Adds flow variant B' with seed credential, but still without PIN management.
1.2.0
- Adds flow variant B with HMAC authenticated SD-JWT and MSO mdoc credentials.
1.1.0
- Adds flow variant C' with seed credential.
- Adds batch issuance on credential endpoint to flow variant C and C'.
- Disables client attestation for flow variant C.
- Requires DPOP for flow variants C and C'.
- Supports credential format MSO mdoc for flow variants C and C'.
1.0.0
- Published Increment 1 of the PID Issuer for SPRIND Funke EUDI Wallet Prototype.
- A detailed feature description can be found on the flow variant and the credential format pages.