Since irmago v0.14.0, `POST /session` returns an extra `frontendRequest` block:
```json
{
"token": "...",
"sessionPtr": { "u": "...", "irmaqr": "..." },
"frontendRequest": {
"authorization": "...",
"minProtocolVersion": "1.0",
"maxProtocolVersion": "1.1"
}
}
```
Today this field is silently dropped by serde (no breakage). Exposing it would unlock downstream use cases that drive the IRMA/Yivi frontend directly — most importantly pairing (mandatory by default for IRMA clients since v0.13).
Proposed surface
Add an optional `frontend_request: Option` field to `SessionData`, with at minimum the `authorization` token (the protocol-version pair is much less useful to a Rust consumer and could be lumped into the struct or omitted).
References
- irmago v0.14.0 release
- Pairing was made mandatory by default in v0.13.0 — without the authorization token, irmars-using apps can't currently complete the pairing handshake.
Since irmago v0.14.0, `POST /session` returns an extra `frontendRequest` block:
```json
{
"token": "...",
"sessionPtr": { "u": "...", "irmaqr": "..." },
"frontendRequest": {
"authorization": "...",
"minProtocolVersion": "1.0",
"maxProtocolVersion": "1.1"
}
}
```
Today this field is silently dropped by serde (no breakage). Exposing it would unlock downstream use cases that drive the IRMA/Yivi frontend directly — most importantly pairing (mandatory by default for IRMA clients since v0.13).
Proposed surface
Add an optional `frontend_request: Option` field to `SessionData`, with at minimum the `authorization` token (the protocol-version pair is much less useful to a Rust consumer and could be lumped into the struct or omitted).
References