Releases: openwallet-foundation-labs/eudiplo
Releases · openwallet-foundation-labs/eudiplo
v2.0.0
2.0.0 (2026-02-19)
- refactor!: rename JWT_SECRET to MASTER_SECRET (57c5574)
Bug Fixes
- add link to role usage (09a9e36)
- ci handling (b960f01)
- handling authorization servers (ec5aa47)
- harden system (bd23ba3)
- improve client handling for issuance (d151244)
- improve navigation (d41e28a)
- merge github actions (589a760)
- pass envs (4eb5d4b)
- protect metric endpoint (180726a)
- remove default values for root user (e30f838)
- remove example chain as config (b003f1c)
- remove unused imports (be60ed1)
- replace presentation:offer with presentation:request (dd24fd7)
- url (34d67a9)
- validate wua for chained as (b85429a)
Documentation
- update container examples to require auth credentials (503dd1c)
Features
- add chained as (5ffce55)
- add Dependabot automation workflows (c4fb7f5)
- add healthcheck to sdk (4ac7d71)
- add secret manager (e1d859e)
- make session events available via sse (3ebf01f)
BREAKING CHANGES
- MASTER_SECRET, AUTH_CLIENT_ID, AUTH_CLIENT_SECRET now required
- Update quick-start.md docker run commands to include required env vars
- Update README.md demo setup to generate credentials instead of defaults
- Clarify .env.example that all three auth vars are required
- Update deployment .env examples to show required credentials
- Add AUTH_CLIENT_ID and AUTH_CLIENT_SECRET to env vars table
- Add METRICS_TOKEN to production deployment examples
Signed-off-by: Mirko Mollik mirko.mollik@eudi.sprind.org
- The environment variable JWT_SECRET has been renamed to MASTER_SECRET
to better reflect its multi-purpose usage (JWT signing and encryption key derivation).
This change provides clearer semantics as the secret is used for:
- JWT token signing (when using integrated OAuth2)
- Encryption key derivation via HKDF (for data at rest)
Migration: Update your .env files and deployment configs to use MASTER_SECRET
instead of JWT_SECRET. The minimum 32-character requirement remains unchanged.
Updated files:
- Backend auth and encryption modules
- All .env.example files
- CI/CD workflows
- Kubernetes and Docker Compose deployment configs
- Documentation
Signed-off-by: Mirko Mollik mirko.mollik@eudi.sprind.org
This release is also available on:
v1.18.0
1.18.0 (2026-02-13)
Bug Fixes
- add better login errors (c6d17fe)
- add first step guide (792538d)
- allow to mount a tls cert into eudiplo (2abf1bd)
- client secret tests (bcd068f)
- default of dpop is false (e1d39d3)
- presentation tests (faeba9e)
- refactor for oidf tests (9f65849)
- release step (bbcecac)
- remove fetch call (e40a017)
- reuse x509 validation (503b4e7)
- tests (3ec137e)
- tests (468c490)
Features
- add iae endpoint (056977e)
This release is also available on:
v1.18.0- npm package (@latest dist-tag)
v1.16.0
1.16.0 (2026-01-28)
Bug Fixes
- add A256GCM for vp encryption (3d6b961)
- add dc api to the sdk handling (9ec603c)
- add more tests for wallet attestation (b2c471b)
- add transaction data (8c06785)
- adding tests for transaction data (f2164f8)
- improve config edit page (04cae0f)
- improve sdk (7f7f98d)
- optimize role handling (d4e51cd)
- remove devtools (827a622)
- tests (f53f669)
- update packages (32295e1)
- use correct certificate for testing (a8bc386)
Features
- add wallet attestation (8269bdf)
This release is also available on:
v1.16.0- npm package (@latest dist-tag)
v1.15.2
1.15.2 (2026-01-24)
Bug Fixes
- apply correct url for dpop check (07428f1)
- ci (6a7cc26)
- configure auth servers (e34110f)
- docker build (b31b014)
- hostname extraction (33951d5)
- merge packages to one sdk (3f25563)
- optimize api service (bc458b5)
- remove console output (093135f)
- remove verifier app (10faf89)
- sonarcube duplication code (b41f061)
This release is also available on:
v1.15.2- npm package (@latest dist-tag)
v1.15.1
1.15.1 (2026-01-22)
Bug Fixes
- update packages (dafb447)
This release is also available on:
v1.15.1- npm package (@latest dist-tag)
v1.14.0
1.14.0 (2026-01-07)
Bug Fixes
- allow to edit certs (010bfe6)
- remove deprecated usage (5a40d23)
- remove trusted authorities from dcql (4ac7633)
- trust list url in ui (722123a)
- update wallet documentation (991e30f)
- use tenant_url instead of public_url for config (70d1a8d)
Features
- add hint with url (cade891)
This release is also available on:
v1.14.0
v1.13.0
1.13.0 (2026-01-05)
Bug Fixes
- add aggregation endpoint (b793041)
- add session config (50e36de)
- only show dashboard elements when authorized (ca96007)
- pass default values to creation page (6b7b60e)
- readd old endpoints to (818a024)
- rename length to size (3808f22)
- type for timestamp (5347166)
Features
- add better support for trust list handling (e1305e6)
This release is also available on:
v1.13.0
v1.12.0
1.12.0 (2026-01-05)
Bug Fixes
- add example implementation (7b74026)
- add host in ci (558aa75)
- add missing package (3612724)
- add render page for trusted lists (dc32a6e)
- add test to verify mdoc (ea208ca)
- add trust list support (23ed88a)
- adjust packages (075a9d1)
- allow to export configs from the webclient (e8e3e2d)
- allow to remove webhooks from existing configs (0e544a5)
- ci (5b58fe4)
- config handling (b8fff65)
- correct link to api (eb4171f)
- https usage (f77c670)
- include mdoc in documentation (1cc9682)
- lockfile (b3be689)
- logo padding (a584cf9)
- move package out of dev list (c450c6c)
- oidf tests (a9b9bf7)
- only include backend in code cov report (d6819f3)
- set batch size when greater than 1 (#317) (a019715)
- set correct imports (6cf83e9)
- show link to trust list (c42ef83)
- testcontainers in ci (9754d6f)
- update verifier (ee82b00)
- use correct dto for self signed certs (ca3091b)
- use correct logger (bcae90e)
Features
This release is also available on:
v1.12.0