CHANGELOG.md

bedrock-vc-issuer ChangeLog

25.2.0 - 2024-02-02

Added

• Add the ability to send options.mandatoryPointers to the /credentials/issue route.

Changed

• Passing invalid options to the /credentials/issue route now throws a validation error.

25.1.0 - 2023-11-14

Added

• Add back support to issue credentials with instances using legacy draft suites ecdsa-2019 and eddsa-2022.

25.0.0 - 2023-11-13

Changed

• BREAKING: Replaced ecdsa-2019 and eddsa-2022 with ecdsa-rdfc-2019 and ecdsa-rdfc-2022 cryptosuites respectively.
• BREAKING: Use @digitalbazaar/data-integrity v2.0 that uses the context https://w3id.org/security/data-integrity/v2.
• BREAKING: Use @bedrock/data-integrity-context@3.0 peer dep that uses @digitalbazaar/data-integrity-context v2.0.

24.1.0 - 2023-11-06

Changed

• Updated zcaps referenceId assertionMethod:foo to assertionMethod and added code for ensuring backwards compatibility to ensure continued functionality of zcaps with older formatted referenceIds.
• Update peer dep bedrock/did-io to v10.1 that adds P-384 to the default key types in the DID method key config.
• Use @digitalbazaar/data-integrity v1.5.0 and @digitalbazaar/ecdsa-2019-cryptosuite v2.0.0 that now includes P-384 in the list of required algorithm for the cryptosuite, allowing issuance of VCs using ecdsa-2019 with the P-384 algorithm.

24.0.0 - 2023-09-19

Changed

• BREAKING: Update peer deps:
  • Use @bedrock/credentials-context@4.
  • Use @bedrock/data-integrity-context@2.
  • Use @bedrock/did-context@5.
  • Use @bedrock/jsonld-document-loader4.
  • Use @bedrock/multikey-context@2.
  • Use @bedrock/security-context@8.
  • Use @bedrock/service-agent@8.
  • Use @bedrock/service-context-store@11.
  • Use @bedrock/service-core@9.
  • Use @bedrock/vc-revocation-list-context@4.
  • Use @bedrock/vc-status-list-context@5.
  • Use @bedrock/veres-one-context@15.
• Update to latest documentStores API.
• Update test deps.

23.1.1 - 2023-09-18

Fixed

• Fix failed 23.1.0 release.

23.1.0 - 2023-09-15

Changed

• Use @digitalbazaar/webkms-client@13. This version required Node.js 18+.
• Use uuid@9. This version requires Node.js 12+.
• Use @digitalbazaar/vc@6.

23.0.0 - 2023-08-16

Changed

• BREAKING: Drop support for Node.js 16.

22.0.1 - 2023-04-18

Fixed

• Fixed mismatched / incompatible peerdeps. Updated to:
  • Update @bedrock/service-agent to v7.0.
  • Update @bedrock/service-context-store to v10.0.
  • Update @bedrock/service-core to v8.0.

22.0.0 - 2023-04-17

Added

• Add support for issuing VCs using the ecdsa-2019 cryptosuite via the @digitalbazaar/ecdsa-2019-cryptosuite implementation.

Changed

• BREAKING: Update peerdep @bedrock/did-io to v10.0.
• BREAKING: Update keyType used to generate assertionMethod zcap referenceId to be uppercase format.
• Use @bedrock/service-core v7.1. Updates error caused by configuration validation failure.

21.0.0 - 2023-01-08

Changed

• BREAKING: Use little-endian bit order for all bitstrings, both for internal use and with revocation and status lists. This change is incompatible with previous deployments.

20.0.1 - 2022-10-25

Fixed

• Update @digitalbazaar/vc and @digitalbazaar/ed25519-signature-* dependencies.

20.0.0 - 2022-10-23

Changed

• BREAKING: Update peer deps:
  • @bedrock/service-context-store@9
  • @bedrock/service-core@7.
• BREAKING: See @bedrock/service-core@7 for important config changes and new peer dependency @bedrock/oauth2-verifier@1.

19.4.0 - 2022-10-10

Changed

• Allow any valid json as req.body not just Objects and Arrays.

19.3.1 - 2022-09-28

Fixed

• Do not await createSuite.
• Change eddsa-2022 createSuite function to non-async function.

19.3.0 - 2022-09-21

Added

• Add support for @digitalbazaar/eddsa-2022-cryptosuite suite when issuing.
• Add @digitalbazaar/data-integrity to library.

Changed

• Use @digitalbazaar/webkms-client@12.1 in order to enable DataIntegrityProofs.

19.2.0 - 2022-08-02

Changed

• Use @digitalbazaar/webkms-client@12. Should be no external changes.

19.1.0 - 2022-07-17

Added

• Add support for oauth2-authorized issuer instances.

19.0.0 - 2022-06-30

Changed

• BREAKING: Require Node.js >=16.
• Update dependencies.
• BREAKING: Update peer dependencies.
  • @bedrock/did-io@9
  • @bedrock/service-agent@6
  • @bedrock/service-context-store@8
  • @bedrock/service-core@6
• Test on Node.js 18.x.
• Lint module.
• Use package.json files field.

18.0.0 - 2022-06-08

Changed

• BREAKING: Use @digitalbazaar/vc-status-list v4.0, now includes statusPurpose in SLC VCs.

17.0.0 - 2022-05-17

Changed

• BREAKING: Use @bedrock-service-context-store@7 to cause migration of old EDV context documents to the new EDV attribute version.

16.2.0 - 2022-05-09

Changed

• Require peer dependency @bedrock-service-agent@5.1 to allow use of ephemeral agent when invoking service agent zcaps.

16.1.0 - 2022-05-05

Changed

• Add optimization to prevent getting document store when unnecessary.

16.0.0 - 2022-05-05

Changed

• BREAKING: Update peer deps:
  • @bedrock/service-agent@5
  • @bedrock/service-context-store@6.
• BREAKING: The updated peer dependencies use a new EDV client with a new blind attribute version. This version is incompatible with previous versions and a manual migration must be performed to update all EDV documents to use the new blind attribute version -- or a new deployment is required.

15.0.0 - 2022-05-02

Added

• Add support for StatusList2021 as a status list option.

Changed

• BREAKING: Require type in status list config. Currently supported types are RevocationList2020 and StatusList2021.

14.0.1 - 2022-04-29

Fixed

• Fix peer deps; use @bedrock/vc-status-list-context@4.

14.0.0 - 2022-04-29

Changed

• BREAKING: Update peer deps:
  • @bedrock/core@6
  • @bedrock/credentials-context@3
  • @bedrock/did-context@4
  • @bedrock/did-io@8
  • @bedrock/express@8
  • @bedrock/https-agent@4
  • @bedrock/jsonld-document-loader@3
  • @bedrock/mongodb@10
  • @bedrock/security-context@7
  • @bedrock/service-agent@4
  • @bedrock/service-context-store@5
  • @bedrock/service-core@5
  • @bedrock/validation@7
  • @bedrock/vc-status-list-context@3
  • @bedrock/vc-revocation-list-context@3
  • @bedrock/veres-one-context@14.

13.0.0 - 2022-04-06

Changed

• BREAKING: Rename package to @bedrock/vc-issuer.
• BREAKING: Convert to module (ESM).
• BREAKING: Remove default export.
• BREAKING: Require node 14.x.

12.0.0 - 2022-03-17

Changed

• BREAKING: Do not store issued VCs or check for duplicate VC IDs unless a credential status mechanism is configured.

11.1.0 - 2022-03-14

Added

• Add missing dependency body-parser@1.19.2.
• Add missing dependencies @digitalbazaar/webkms-client@10.0 and @digitalbazaar/edv-client@13.0 in test.

Changed

• Update coverage-ci script to not output to coverage.lcov.

Removed

• Remove unused dependency @digitalbazaar/edv-client@13.0.
• Remove unused dependencies from test.

11.0.0 - 2022-03-12

Changed

• BREAKING: Use statusPurpose instead of statusType for all param names and data models.
• Update dependencies:
  • @digitalbazaar/vc-status-list@2.1.

10.0.0 - 2022-03-11

Changed

• BREAKING: Update peer dependencies:
  • bedrock-service-core@3
  • bedrock-service-context-store@3
  • bedrock-did-io@6.1.

9.0.1 - 2022-03-10

Fixed

• Fix linting error.

9.0.0 - 2022-03-10

Changed

• BREAKING: Disable loading contexts from the Web by default.

Removed

• BREAKING: Remove side-tracking of credential statuses in VC EDV document meta data. This side-tracking can get out of sync with the status list and it is an unnecessary complexity.

8.0.0 - 2022-03-01

Changed

• BREAKING: Move zcap revocations to /zcaps/revocations to better future proof.
• BREAKING: Require bedrock-service-core@2, bedrock-service-agent@2, and bedrock-service-context-store@2 peer dependencies.

Removed

• Remove unused @digitalbazaar/http-client dependency.

7.1.0 - 2022-02-23

Added

• Add default (dev mode) app-identity entry for vc-issuer service.

7.0.1 - 2022-02-21

Changed

• Use @digitalbazaar/vc-status-list-context and updated bedrock-vc-status-list-context. These dependencies have no changes other than moved package locations.

7.0.0 - 2022-02-20

Changed

• BREAKING: Complete refactor to run on top of bedrock-service* modules. While this version has similar functionality, its APIs and implementation are a clean break from previous versions.

6.0.1 - 2021-08-30

Fixed

• Revert back to appending the revocation list context to the credential.

6.0.0 - 2021-08-30

Changed

• BREAKING: Update to use latest Ed25519 key and signature suites, latest did-io.

5.4.0 - 2021-01-12

Changed

• Update bedrock-account@5.0.

5.3.0 - 2020-12-17

Changed

• Update deps.
• Update test deps.
• Update peerDependencies.
• Use bitstring from @digitalbazaar/bitstring.

Fixed

• Include privateKmsBaseUrl and publicKmsBaseUrl in test.
• Add keyResolver in test.

5.2.1 - 2020-07-07

Fixed

• Fix usage of the MongoDB projection API.

5.2.0 - 2020-07-01

Changed

• Update deps.
• Update test deps.

5.1.0 - 2020-06-30

Changed

• Update peerDependencies to include bedrock-account@4.
• Update test deps.
• Update CI workflow.
• Improve test coverage.

5.0.0 - 2020-06-24

Changed

• BREAKING: Use edv-client@4. This is a breaking change here because of changes in how edv-client serializes documents.

4.0.0 - 2020-06-09

Changed

• BREAKING: Use bedrock-mongodb ^7.0.0.
• Add a working test for the issuer.
• Update mongodb calls to use mongo driver 3.5 api

3.1.0 - 2020-05-18

Changed

• Add support for did:v1 resolution.

3.0.0 - 2020-04-09

Changed

• BREAKING: Obsolete APIs have been removed. See git history for changes.

2.0.0 - 2020-04-07

Changed

• BREAKING: Signs a VC using capabilities and keys delegated from a wallet profile.
• BREAKING: The automated issuer endpoint requires an application token to be provided in the "authorization" header.
• BREAKING: The automated issuer endpoint now accepts a single credential to be issued.

1.0.0 - 2020-02-27

Added

• Added core files.
• See git history for changes.