Wallet 0.1.26

Release date: 16th of April, 2024

All commits in this release: v0.1.25...v0.1.26

Features

• PID issuance using Haal Centraal BRP proxy
  • PoC of GBA-V Ad-hoc to Haal Centraal data format conversion
• Add support for login with BSN flow
• Add optional API key authentication to requester endpoint
• Improve detecting and reporting when an actual network error has occurred
• Lots of UI fixes
• Add validity information and issuer common_name to disclosed attributes
• Add integration test cases with multiple and duplicate cards
• Implement extra checks for network payloads

QA

• E2E test & framework maintenance
• Build iOS apps in CI
• Provide privacy manifest for iOS

UI changes

• Update to flutter 3.19.4
• Update Appbar Icons for Accessibility
• Animate ConfirmButtons
• Add support for 'close' icon in end states
• Migrate to ConfirmButtons and make sticky
• Feature Check Feedback Fixes
• Update FocusArea for LinkTileButton
• Update Pin Errors Accessibility
• Update Pin Backspace functionality

UI tweaks

• Fix dismiss dialog bug
• Fix missing (cancel) disclosure logs in mock app
• Refactor deprecated imperative apply of Flutter's Gradle plugins
• Align mock pin validation with core
• Split 'Agreement' section Semantics
• Update Dashboard QR Button FocusArea
• Read out 'close' button on DisclosureSuccess
• Update ActivitySummary Semantics

Other tweaks

• Use BaseUrl newtype in mock_relying_party
• Fix URL of cross device result in MRP
• Only insert 'Results' title in HTML once
• Prevent empty string to be passed to app as build-name
• Fix missing build name in CI
• Clippy 1.77 fixes
• More fixes for Clippy 1.77
• Add --rm flag to docker compose run so it doesn't leave containers dangling.
• Give more resources to database clusters (especially wp) to prevent OOM for many connections
• Solve join footgun
• Fix image location for Kaniko
• Fix incorrect create_table path in docker-compose file
• Update h2 and mio to non-vulnerable versions
• Add missing MRP config
• Make MRP port a string
• Mount test-data.json configmap in gbamock
• Add merge-request-manual to rules, allow ONT to deploy on MR manually
• Fix wallet server tracing
• Typo in last-minute change to Android build script
• Fix wallet server port

Wallet 0.1.25

Release date: 26th of March, 2024

All commits in this release: v0.1.24...v0.1.25

Features

• Implement issuance with OpenID4VCI protocol
  • Drop openid dependency in favour of our own code
  • Remove mock PID issuer
  • Add issuer certificate to attestation previews
• Build and release based on a version tag for demo and mock versions
• Update PIN screens to new and accessible design
• In disclosure on 'same device', hide phishing warning for 'cross device'
• Wipe contents of wallet on app reset
• Add active session api to fix StateErrors
• Propagate pin related (network)errors​

Quality Assurance

• E2E test dynamic config for multiple app flavours
• Let cargo audit fail if a vulnerability is found
• Move hardcoded default pgadmin password to environment
• Disable Dart scanner for dependency-check
• Ignore RUSTSEC-2024-0019 since it is Windows-specific
• Rust test improvements and race condition fix
• Update and clean up TODO / FIXME comments x4
• Add test doing registration, issuance and disclosure

Tweaks

• Increase e2e wait timeouts and run selected tests only
• AndroidManifest updates
• Add missing make setup-saml step
• Fix HTML encoding error in QR code
• Bump minimum Android SDK to API 24 (Android 7.0)
• Change signature of SignResult for bulk signing to indicate the result is ordered
• Make returnUrlPrefix configurable to allow generating for other envs
• Make universal base link configurable compile time for wallet and run time for wallet_server
• Add some hierarchy to Wallet history errors
• Update and add configuration parameters for wallet-server
• Update default pipeline image to newest Debian
• Remove double sha prefix from Debian image version
• Bugfix multiple cards during disclosure
• Remove variables that are now part of the config.toml
• Automatically run wallet-server migrations in pipeline for SP
• Update images based on Debian Bookworm
• Use correct env var for image in wallet-server-migration-job
• Separate mock release
• Add missing env var to mrp-wallet-server deployment job
• Fix flutter-rust image hash in GitLab CI
• Remove workaround when setting documents callback
• wallet-server.toml will be moved to separate secret
• Update Android images in CI config
• Always generate der for development verifier and issuer CAs

UI Tweaks

• Add "Gemeente Amsterdam" login (disclosure) mock scenario
• Remove limit font scaling widget
• Replace issue report confirmation by placeholder screen
• Update textStyle on CheckDataOfferingPage
• Add missing (sub)title to disclosure loader
• Sync updated Lokalise texts
• Show correct (network)error on accept_pid error
• Dismiss dialog on lock
• Add dynamic disclosure success close button copy
• Privacy Banner & CardDataScreen updates
• Add soft-hyphen to break words in logical place
• Improve CTA readability with font scaling
• Fix font scaling on RichText widget
• Align menu button title with app bar title text style
• VoiceOver improvements

Wallet 0.1.24

Release date: 5th of March, 2024

All commits in this release: v0.1.23...v0.1.24

App / shared core / wallet service

• Setup recent history stream API and implementation
• Setup specified test scenarios
• Use separate tables for issuance and disclosure events
• Replace deeplink with universal link, move to wallet_common
• Added initial version of demo namespace
• Propagate NetworkErrors during personalisation
• Add same_device without return_url flow

App UI

• Update app introduction
• Introduce MockIndicatorText widget
• Add bottom back button to menu screen
• Render card thumbnail in history overview
• Update DisclosureScreen end states
• Use organization display name across UI
• Fix bottom back button hover area
• Update Android Splash Logo
• Update Flutter dependencies
• SafeArea / Landscape fixes

Quality assurance

• Add caching of Rust compilation to CI config
• Update aes-gcm in Cargo.toml
• Fix e2e click timeout on missing element
• Adapt CI to only run automation tests on test branch
• Fix e2e tests
• UC 7.2 e2e tests
• UC 9.7 e2e tests
• Deploy demo app
• Update e2e tests to cover app introduction updates
• Expand wallet_app unit tests

Misc

• Fix numbered list font size
• Update digid-connector config
• Remove add bundle identifiers for Fastlane Match
• Skip rdo-max compile when building docker image
• Revert "Update bundler dependencies"
• iOS universal link parameter
• Fix the config server URL in the setup script
• Fix Android deploy in CI
• Fix Letsencrypt certificate retrieval
• Revert "Update forgotten package identifier for Android"
• Update BeterWonen usecase displayName
• Remove redundant HomeScreen
• Move certificate deployment to wallet-config repo
• Fix pipeline
• Parameterise universal link host Android
• Downgrade rename dependency
• Fix test compilation for mdoc crate
• Always add manifest to artifacts
• Fix android CI build
• Fix e2e automation test jobs
• Always recreate nl-rdo-max in devenv
• Update Android images to JDK 17
• Update scheduled UI automation job to check .gitlab-ci for diffs
• Pass UL_HOSTNAME down to flutter build in CI
• Fix key value pair when --dart-define variable is empty
• Fix mrp_disclosed_attributes_url once again
• Add rel=noopener to same_device flow href
• Update ndkVersion in build.gradle

Wallet 0.1.23

Release date: 13th of February, 2024

All commits in this release: v0.1.22...v0.1.23

App / shared core / wallet server features

• Wallet Config: ​
  • Implement TLS pinning​
  • Sign and Verify the configuration​
  • Show configuration version and 'fetch date' on about screen​
• UI Redesign​
  • Disclosure – Assess request​
  • Disclosure – Card sharing details​
  • Dashboard​
  • Dashboard – Remove bottom bar​
  • Activity Summary widget​
  • QR Scanner​
• Verify all attributes are fetched through core​
• Lock wallet after PIN timeout during disclosure​

Quality assurance

• E2E tests: UC 2.3, UC 3.1, UC 7.1, UC 7.2​
• Resolve security findings from OSV Scanner​
• Generate and deliver Software Bill of Materials (SBoM)​
• Fix new cargo audit findings (vulnerabilities, yanked & warnings)​
• Scan Dart/Flutter dependencies for vulnerabilities​
• Simplify setUp() test steps to reach a certain screen​
• Investigate if CI feedback loop can be improved​
• Fix DigiD connector constantly uses 50% of one CPU core (local dev)​
• Merge wallet_server integration tests into disclosure/issuance tests​
• Add e2e tests based on feature board​
• Consider removing and then actually remove Base64Bytes​
• Fix or remove pid_issuer integration test​
• Make validity of X.509 Certificates configurable​

Refactors and fixes

• Get name of card issuer during disclosure flow and history log from certificate ​
• Make privacy policy links clickable ​
• Correctly return isFirstInteractionWithRelyingParty ​
• Handle intentToRetain correctly in the UI ​
• Clean up testing feature flags in all Rust crates ​
• Investigate HSM connection issues ​
• Configure max sessions and session lifetime for HSM ​
• Remove code duplication ot to_custom_ext ​
• Debug MRP frontend disclosed attributes (all flows) ​
• Refactor certificate generation to KeyPair ​
• Hide invalid menu back button ​
• Remove static files hosting ​
• Remove issuerId from WalletCard​
• Remove non-existing configmap from deployment ​
• Impl From<…> for SessionState<DisclosureData> ​
• Fixed disclosed attributes URL formatting ​
• Consistently import rand_core directly ​
• Update rustix ​
• Use Cow for keyed struct fields in mdoc ​
• CI improvements ​
• Add instructions for running CI locally ​
• Format imports using lightly rustfmt ​

Wallet 0.1.22

Release date: 23rd of January, 2024

All commits in this release: v0.1.21...v0.1.22

Shared core / wallet server features

• Store wallet config locally
• Disclosure count for Mdoc copies
• Deploy mock relying party
• Recurring config update
• Deploy mrp postgres
• Include SessionTranscript hash in disclosure return URL
• Add return url to certificate
• HTTP configuration caching
• Verify return URL against verifier certificate
• Store issued and disclosed attributes in history log
• Reject wallet configuration without newer version number
• Compare embedded config with stored config
• Implemented bulk signing for disclosure
• Log disclosure error events
• Introduce IssuerRegistration information in X509 MDL certificate
• Add request_origin_base_url field to ReaderRegistration

UI features

• Native splash support
• Handle Disclosure Networking Errors
• Handle optional return URL in disclosure flow
• Re-enable card history
• Optional requested cards
• (Sliver)WalletAppBar Widget
• Migrate to WalletAppBar
• Update Organization Pages
• Fix URL join's
• Fix text overflow issue
• Update Assess Request UI
• WalletAppBar Animation

Quality assurance

• Automate manual test cases
• Increase E2E waitFor timeout
• Continuous delivery mock and non mock (Android) apps
• Set app package name per Play Store AAB upload
• Fix missing app_identifier variable in private lane
• Re-enable and expand mdoc crate integration tests
• Disclosure integration tests
• Expand disclosure integration tests
• Specify correct image for mrp-wallet-server deployment. Remove unnecessary logging.
• UC 9.1 and 9.3 e2e tests

Shared core / wallet server refactors and fixes

• Replace fieldnames by serde_introspect
• Fix unknown BSN issues
• Refactor WalletEvent to capture a single transaction
• Wallet server now requires separate requester server configuration
• Refactor JWT handling for OpenID4VCI
• TODO comment housekeeping in mdoc crate
• Catch all panics on Wallet Server startup
• Fix wallet server DB URL in setup script
• Attempt to reduce memory footprint for Rust tests
• Fixes for Rust 1.75 clippy warnings
• Add ReturnUrlTemplate to WalletServer API
• Enable mock feature for wallet unit tests
• Fix ReturnUrlPrefix::matches_url
• Update to Rust 1.75 and remove async_trait
• Wallet configuration update interval backgrounding fix
• Split wallet server status endpoint
• Add hybrid test
• Verify collection contains items before using insert_many
• Separate wallet config hosting
• Fix filename of pid_issuer ca for existence check
• Fix relative disclosed attributes url

UI refactors / fixes

• Fix mock DigiD login crash
• Disclosure flow fixes
• Remove empty placeholder card from mock log
• Remove DisclosureFlow model
• Fix deeplink handling on app cold start
• Add pathPrefix to url deeplink
• Flutter fix return url feature
• Changes to iOS for Flutter 3.16.7 upgrade
• Merge Semantics and PolicyScreen update
• Fix originUrl dart doc

Wallet 0.1.21

Release date: 12th of December, 2023

All commits in this release: v0.1.20...v0.1.21

Wallet 0.1.20

Release date: 21st of November 2023

All commits in this release: v0.1.19...v0.1.20

Wallet 0.1.19

Release date: 31st of October, 2023

Highlights

• Implement E2E encryption for mdoc disclosure
• Add instruction challenge timelimit to wallet_provider settings
• Implement bulk signing of mdoc_copies for issuance
• Migrate to app_links
• Implement mock api for disclosure in flutter_api
• HSM initial setup
• Generate wallet user keys in HSM
• Define RP authentication extension

Quality assurance

• Update ALL Rust dependencies to fix cargo audit vulnerabilities
• Fix automated E2E tests
• Add feature ticket number to e2e tests
• Generate coverage report for Rust integration test
• Add instructions how to start emulators, improve README for iOS simulator
• Refactor HttpDigidClient to HttpDigidSession and improve unit tests
• Add sequence diagrams for disclosure and issuance for RP and issuer
• Split up Wallet and add unit tests for all its methods

UI features

• Improve SVG performance
• Dashboard card hero transition
• Fix SVG preload crash
• Update disclosure related l10n string keys
• Improve accessibility using Talkback/Voiceover
• Add pharmacy mock scenario

Tweaks

• Rename mdoc_type table to mdoc in wallet
• Add extra margin to mdoc session cleanup test
• Use MdocsMap only for mock storage
• Fix mdoc crate mock feature issues
• Add wallet env_config feature to test_integration
• Update CocoaPods lockfile again
• Manually deploy pid_issuer temporarily
• Fix deeplink lifecycle debounce logic
• Use 1.73.0 rust image in building other Docker images.
• Add workaround for CocoaPods dependency issue
• Separate migrations crate and binary
• Add missing dependencies for running wallet_provider_migrations
• Align wallet_app repository naming
• Rename 'verification' to 'disclosure' in wallet_app
• Use toml style notation for crates if possible in a oneliner
• Wallet provider migrations must be run from wallet_core dir
• Upgrade connectivity_plus plugin to 5.0.1

Wallet 0.1.18

Release date: 10th of October, 2023

Changes

• Stream and display mdoc cards in PID and dashboard UI
• Accept / reject PID functionality
• Update and test card mappers (i.e. translated cards)
• Remote signing of mdocs using the wallet provider
• Persist mdocs in the encrypted wallet database
• Improve local development experience
• Extend PID issuer mock attributes
• Add mock PID data configuration
• Implement special pin timeout flow at personalization
• Store wallet provider keys in database
• Add feature for overriding wallet config from environment and .env file
• Document mdoc disclosure in flowchart

Tweaks

• Add digid-connector settings to PID issuer deployment
• Rename card 'summary' to 'detail' screen
• Refactor wallet dependencies
• Update accept_pid_issuance returned errors
• Refactor mdoc storage
• Fix typo in start-devenv script
• Extract integration tests crate
• Implement CocoaPods workaround for Xcode 15
• Sonarqube improvements
• Remove some unused dependencies and fix some conditional imports
• Fix some clippy nightly warnings
• Update onboarding progress indicator
• Simplify usage of cargo fmt in the CI
• Update pipeline to build with Flutter 3.13.5
• Fix missing required field in pid issuer deployment
• Do not mount a config map as the root filesystem.
• Rename pid-issuer config in deployment
• Fix config's .toml extension to make matching exact
• Fix pid_issuer deployment
• Remove Skip Setup Button
• Create OpenID client on every userinfo request
• Remove unique_id from PID
• Update card on locale update
• Fix dependency providers

Wallet 0.1.17

Release date: 19th of September, 2023

Changes

• Integrate DigiD client and PID issuer client into Wallet
• Processed comments of the mdoc crate review
• Read from db if wallet_user is blocked
• Show remaining timeout for failed pin when already in timeout
• Introduced own Signer trait with async sign and try_sign methods
• Flutter API error improvements
• Split mdoc do_issuance() in two separate functions at the consent phase
• Show loading state while fetching issuance url
• Make PlatformUtilities in platform_support async
• Handle digid flow cancellation and errors
• Render pid preview exposed by core during PID issuance
• Cancel PID issuance in core

UI changes

• Update HomeScreen entry transition
• Update 'Login with DigiD' copy
• Update to Flutter 3.13.1
• Update iOS files after Flutter version upgrade
• Implement app copy improvements
• Clean up wallet_app assets
• Update personalise app copy
• Remove flutter_sticky_header package
• Hide card update & delete buttons
• Display No Internet ErrorScreen
• Replace card history overview with placeholder screen
• Update card attributes copy & styling
• Update iOS CocoaPods lockfile
• Move 'Give feedback' to main menu screen
• Update pin timeout screen copy

Tweaks

• Fix secrets of mock PID issuer deployment
• Update app dependencies
• Fix bug causing the PID issuer to incorrectly construct its public URL during startup
• Append a / to the PID issuer public URL if not present
• Tweak wallet_app error handling
• Fix for inadvertent iOS bundle identifier rename
• Clean up all Cargo.toml files
• Update pubspec and dependencies
• Rename ConstructableWithIdentifier trait
• Remove redundant trait bounds on clones in Wallet
• Quote 'true' in wallet provider configmap, add prefix
• Set PID issuer deployment public url
• Reduce PID issuer pods in deployment to 1 since it has state
• Make PID issuer log errors
• Fix HTTP error handling in pid_issuer