0.21

0.21.0

Features

Database Migration Framework

  • Implemented cluster-aware database migration framework for safe multi-node deployments.
  • Added dry run and rollback capabilities for migrations.
  • Added node restart recovery and cluster state management.
  • Added progress logging for migration tracking.
  • Added migration for organization tree collection timestamps.
  • Ensured database backward compatibility with existing data.

Transaction Data Support

  • Added transaction_data support in verifier2 flows.
  • Implemented config-driven transaction data type profiles via endpoint.
  • Added UI integration for transaction data with profile-driven configuration.
  • Validated and restricted transaction data to specific credential formats.
  • Enforced authentication on transaction-data-profiles endpoint.
  • Aligned transaction data handling with OpenID4VP specification.

Resource Timestamps

  • Added createdAt and updatedAt timestamps to TreeEntry interface.
  • Ensured timestamps are evaluated in enterprise backend service (not client-provided).
  • Added index for sorting by updatedAt field.
  • Moved timestamp fields to end of resource constructors for compatibility.
  • Added migration for existing data to populate timestamp fields.

X.509 and CSR Support

  • Added CSR support with UI integration for certificate generation.
  • Added support for generic X.509 certificates and CSR flows.
  • Added x5c support for W3C credentials.
  • Added integration tests for data functions.

Credential Status

  • Added support for capacity monitoring and automatic rollover for status lists.
  • To enable auto-rollover on existing services, update the service configuration to include capacity.autoRollover: true

Fixes and improvements

  • Fixed issuerState handling for preauthorized offers.
  • Updated token and credential endpoint errors.
  • Upgraded to Ktor 3.4 with associated fixes.
  • Removed openid metadata endpoint.
  • Fixed OIDC metadata compatibility.
  • Updated MongoDB connection strings for new infrastructure.
  • Updated ingress class from nginx to Traefik.
  • Updated kubeconfig secret references.
  • Updated helm and k8s deployment workflow references.
  • Fixed policy field comparison to avoid timestamp mismatch in tests.
  • Fixed Sonar findings and code cleanup.
  • Reduced code duplication across services.
  • Removed unnecessary try-catch blocks.
  • Fixed duplicate imports after merge.

Breaking changes

None

Last updated on June 16, 2026
0.20Archive Release Notes