- Feat:
- Add mso_mdoc and intent_to_retain types. No interpretation is done yet, as the kmp-mdl-mdoc handles PE itself. We will add support soon in PEX as well.
- Fixed:
- nested_path updates sometimes ended up with wrong replacements
- const filter allows booleans now
- Added:
- Allow to work without input descriptors. EBSI is using this (not spec compliant!)
- Updated:
- use
sd_hashinstead of_sd_hash, reflecting the change in the SD-JWT spec
- use
- Fixed:
- const boolean value was missing in schema file
- Updated:
- Allow to use const boolean in filters.
- Allow to use 'optional' boolean in V2 Fields object. Please be aware we do not take that value into account yet. We just added the field, so it doesn't fail validation
- Update to PEX models 2.2.4
- Updated:
- Update sd-jwt packages to 0.6.1 from 0.3.0
- Update to latest @sphereon/ssi-types
- Move to pnpm from yarn, given our other libraries also use pnpm
- Added:
- Significant performance improvement: Add cache for AJV field validation as the operation is expensive and can be called multiple times. The improvement is in the order of 10 times or higher especially when larger definitions are encountered
- Expose jwt_vp_json format
- Updated:
- Update to PEX models 2.2.2
- Added:
- Support for Data Integrity Proofs, using Anoncreds 2023 format.
- Updated:
- Update to PEX models 2.2.0 which adds support for Verifiable Credential Data Integrity 1.0
- Fixed:
- Do not use path nested for sd-jwt
- In the wild a presentation submission sometimes comes in as a double stringified JSON and thus string format. We detect and fix that, also providing a warning
- Updated:
- SD-JWT dependency updated to 0.2.0
- SSS types updated to 0.18.1
- Added:
- Initial support for Selective Disclosure JWTs (SD-JWT). API is mostly the same, but to be sure we released it as a new major version
- Updated:
- Update to latest pex-models, containing some definition updates
- Fixed:
- Fix evaluation rule All when there are no marked input descriptors
- Updated:
- Updated pex-model deps
- Added more logic to deduce holder(s) for a VP
- Fixed:
- Logic when to generate a presentation submission was incorrect
- Updated:
- Updated logic to return holder DID when constructing presentation
- Fixed:
- Issue with determining whether to generate submission data or not.
-
Updated:
- Updated to latest PEX models package
-
Fixed:
- Use decoded VC values to match paths against, instead of internal stable VC representation. We didn't map the "vc" property in a JWT VP correctly.
- Fix issue with verifiableCredential path dereferencing
-
Added:
- Support for external presentation submission paths for VPs and VCs as used by OID4VP (path_nested)
- Support for
jwt_vc_jsonformat - Support for the
formatproperty at tje input descriptor level next to the global level
No changes except from some updated dependencies
IMPORTANT: This release moves to @astronautlabs/jsonpathplus in favor of jsonpathplus, bringing a security improvement. As such you may need to update your dependencies in case you have a more strict dependency manager like pnpm.
-
Changed:
- Move to @astronautlabs/jsonpathplus for improved Jsonpath security, whilst working on a permanent fix. (#110)
-
Fixed:
- Move to build-time compilation of schema's using AJV, instead of runtime. Fixes an issue with the Hermes engine in React-Native, next to bringing execution optimizations. (#118)
- Add
nameproperty tofieldobjects included in @sphereon/pex-models 2.0.3. (#123) - Invalid name used in matches from selection results. (#117)
- Fixed pick and count behaviour matching against all credentials instead of per input descriptor (#115)
- Fixed matching logic because of wrong assumptions. Previously all credentials were matched against all input descriptors, now a match per input descriptor suffices, as long as all input descriptors have matches. (#114 and #113)
- Fixed:
- some wrong import paths were used from @sphereon/pex-models
WARNING: This release has several breaking changes.
Although we envision a V3 release, with some major refactoring and full support for V2 of the PE spec, this version should be more usable in OpenID4VP scenario's and incorporates many fixes. As such we urge people to upgrade from V1 to V2 of the library.
Refactored external methods. They now all have optional objects as argument. Fixing future extensibility and ordering of arguments. Added support for PEX models v2, fixing model/interface names for typescript reserved words. Added options which are handy in OpenID4VP scenario's, like having separate presentation submissions, filtering on DIDs and Formats not denoted in the specification etc.
-
Added:
- Allow to have an external presentation submission not part of the VP, especially handy in OpenID4VP use cases
- Allow to filter against Verifiable Credential Formats, defined outside of a definition. This is handy for instance when OpenID4VP Relying Parties signal support for certain formats in their OpenID4VP metadata, but do not necessarily incorporate these in their definition(s).
- Allow to filter against DID methods, defined outside of a definition. This is handy for instance when OpenID4VP Relying Parties signal support for certain DID methods in their OpenID4VP metadata, but do not necessarily incorporate these in their definition(s).
- Matching of schema strings against the type property in a VC for V1, as this is being used in the wild
- Allow issuance object to be present in a definition as it is being used in the wild
-
Removed:
- definitions of ssi-types (lib/types/SSI.types.ts)
-
Changed:
- Changed optional arguments to use objects, see the upgrade section of the README
presentationFromandverifiablePresentationFrommethods now return an object instead of the presentation directly. see the upgrade section of the README- Certain non-state related methods have moved to static methods in the PEX class
- method signatures are using common types from @sphereon/ssi-types
- Credential Mapper from @sphereon/ssi-types is now used to create internal uniform VPs/VCs
- Relax AJV errors
-
Fixed:
- No more need for _const and _enum models/properties in presentation definitions. They are now
constandenum( fixed in OpenAPI model generation) - Set the format based on detection of the format instead of hard-coding it in the descriptor
- Match subject is issuer against all subjects of a VC if present (not common)
- No more need for _const and _enum models/properties in presentation definitions. They are now
Add async callback for signing
- Updates:
- The sign callback now supports both a synchronous and asynchronous callback, thanks to @TimoGlastra from our friends at @animo
- Update dependencies
Relax V1 schema URI handling
- Updates:
- Relax V1 schema URI handling. Previously we required the URI to be an actual URI, but in the wild the URI is also used as a regular string. We now support that as well. In case we detect a http based URI we will perform some additional checks.
Update dependencies
- Updates:
- Update dependencies
Bugfix release
- Fixed:
- Json-path fix for when an array needs to be searched in a field filter. See README for how to search in an array, as not all JSON schema methods are supported in current verion.
Bugfix release
- Added:
- Add status object to evaluationResult which informs whether VCs would satisfy the Definition or not
- Fixed:
- Some errors would be filtered out by mistake
Internal release because of forgotten merges
Added support for jwt vc/vp, added support for async callbacks, fixed some issues with generating PresentationSubmission
- Added:
- support for jwt vc
- support for jwt vp
- support for async callback when creating verifiable presentation (verifiablePresentationFromAsync)
- Changed:
- verifiablePresentationFrom is deprecated
- Fixed:
- handling of submission_requirement object
- creation of presentation_submission
- handling of unwrapped jwt verifiable credentials
Added String.matchAll shim for React-Native compatibility. Will be removed later and updated with another solution, to keep the deps to a minumum
- Fixed:
- React-Native not working with matchAll regexes
Some JWT VC related fixes in the deserialization and VC claim comparisons
- Fixed:
- JWT exp and nbf values can be numbers
- JWT issuer can be an object with id. Ensure we also check this value against the VC claim
- Always ensure JWT timestamps are serialized as ISO date strings in the resulting VC
This is the first stable PEX library that has complete support for V1 and V2 of the Presentation Exchange spec.
- Added:
- Check for hashlinks in schemas for a V1 specification. If we encounter them we generate a warning we did not verify the hashlink, as unfortunately there are no current typescript libraries that support hashlink decoding.
- Changed:
limitDisclosureandholderDidsarguments made optional everywhere. Do note that definitions that use some holder binding and/or selective disclosure require these arguments to be present, so we advise to always populate them
- Fixed
- React-native has no support for look-behind in regexes. We used this in escaping JSONLD terms in JSON-paths. Replaced by some typescript logic.
Escape JsonLD terms in json-paths. This allows path constructs like $..@context to be used in definitions. Improved
JWT VC handling.
- Added:
- JSonLD terms like
@contextneed to be escaped for the json-path library. As long as the @ is followed by one or more word-characters we internally escape it, so that the json-path library functions as one would expect.
- JSonLD terms like
- Changed:
- We now have better JWT claim handling. We are using VC values from the JWT if present. Otherwise we use JWT claim values. If both are present we check them to be equal.
- Documentation updates
- Fixed:
- Format minimum was not properly handled the schema check
- We translate _const and _enum from the OpenAPI models internally to their actual protected typescript keys ( const and enum)
- Different submission requirements and definition combinations where not counted properly
No exports of internal structures anymore. Split internal and external interfaces and types
- Changed:
- Moved internal types to separate file
- Only export external interfaces and types
Small improvements in the Credential interfaces, removal of exposure of internal structures in the PEX class. Small bugfixes
-
Changed:
- Next to
@contextevaluation for V1 schema values, we now look at thecredentialSchema - Seperated Credentials and VerifiableCredential public interfaces into JSON-LD and JWT versions
- Next to
-
Fixed:
- We were exposing some internal structures in the PEX class
- Group validation assumed an array being present, which could be a string
Breaking change: class and package renamed as of v0.6.0!
As part of introducing Presentation Exchange v1 and v2 feature based detection support to our Presentation Exchange library and not reaching version 1.X yet, we decided to change the name of both the package and the main entry class:
- The package was changed from
@sphereon/pe-jsto@sphereon/pex - The main class was changed from
PEJStoPEX. The latter class has internal feature detection support on the provided definition, delegating the actual implementation to the newPEXv1orPEXv2class internally. If you don't want the automatic feature detection you can also choose to use thePEXv1andPEXv2classes directly.
Add Presentation Exchange v2 support, separating JWT Verifiable Credentials and JSON-LD VerifiableCredentials
Breaking change: class and package renamed in v0.6.0! As part of introducing Presentation Exchange v1 and v2 feature based detection support to our Presentation Exchange library and not reaching version 1.X yet, we decided to change the name of both the package and the main entry class:
-
The package was changed from
@sphereon/pe-jsto@sphereon/pex -
The main class was changed from
PEJStoPEX. The latter class has internal feature detection support on the provided definition, delegating the actual implementation to the newPEXv1orPEXv2class internally. If you don't want the automatic feature detection you can also choose to use thePEXv1andPEXv2classes directly. -
Added:
- presentation exchange v2 support
- supporting method for all the previous methods in v2
- presentation definition version discovery
- presentation definition validator for v2
framevalidation
- Updated:
- Json-LD and JWT verifiable credentials are separated internally
- All the messaged now come from an enum instead of literal strings
- Dependency versions
- presentation exchange v2 support
Fixed json path issue in library responses. Added a verifiableCredential array to almost all responses that corresponds to the json paths in the same response
-
Fixed:
- json path of the verifiableCredentials, now start at presentation object root in a VP
-
Updated:
- added verifiableCredential (list) to return params of evaluatePresentation
- added verifiableCredential (list) to return params of evaluateCredentials
- selectFrom response changed to have "verifiableCredential" instead of "selectableVerifiableCredential"
- renamed matches in submissionRequirementMatches to vc_path
Refactor verifiable presentation support using callbacks
-
Added:
- verifiablePresentationFrom method that accepts a callback function and signature proof options
- Documentation on the above as well as general improvements
-
Fixed:
- Credential and Presentation interfaces were not fully conforming
- Explicit imports and exports added
- Selective disclosure errors fixed
- Releases contained too many files
Improve selective disclosure, add sign callback, several fixes
-
Added:
- Add status object to SelectResults informing the user whether to continue submission to the verifier or not
- Allow user to pass in ZKP based signature suite types, so that PE can determine whether limited/selective disclosure can be applied. Note you still need to create the proofs yourself
- Create a Verifiable Presentation with PresentationSubmission object that accepts a signature callback
-
Fixed:
- Ensure supplied params are final and not mutated
- Limited/selective disclosure fixes
This release has been pulled, because of issues in the release process.
Bugfix release (refactoring)
-
Fixed:
- Remove Presentation Definition from VP as these are separate types
- Fix creation of VP from submissionFrom
- Fix sameSubject and issuerIsOwner handling
- Fix JSON paths in matches
- Fix several tests to be more strict
-
Updated:
- Remove usage of unknown/any types in favor of having interfaces and types
- Enable strict mode
- Refactoring of several classes
- Updated readme/flows
Bugfix release
- Fixed:
- We returned duplicate submission requirements in some cases
- Remove URL package import, fixes react-native support
- Fixed 2 code-paths that could have undefined values
Updated dependency and fixed schema handling
-
Fixed:
- Incorrect handling of the schema array in the submission requirements. See: decentralized-identity/presentation-exchange#250
-
Updated:
- Dependency of tmpl updated from 1.0.4 to 1.0.5 because of a CVE
Make project compatible with browsers / react
- Fixed:
- Make compatible with browsers/react
Updated dependencies and some forgotten expression changes
- Changed:
- Updated all dependencies
- Fixed:
- Remove usage of &&= in all expressions
Some fixes regarding usage in React. Better error handling
-
Fixed:
- Remove usage of &&= in expressions
- Restrict usage of fs to tests only, so not used at runtime
- Move errors from strings to an object
-
Added:
- Return stacktraces
This is the second Beta release of the Presentation Exchange typescript library. Please note that the interfaces might still slightly change as the software still is in active development.
- Fixed:
- strict flag in projects gave errors on PEX
This is the first Beta release of the Presentation Exchange typescript library. Please note that the interfaces might still slightly change as the software still is in active development.
-
Added:
- pejs.selectFrom() method
-
Fixed:
- submissionFrom should use results from evaluate
- validateSubmission should be successfully called
-
Known issues:
-
Implementation of actual hashlink validation, according to DIF documentation is missing
4.3.1- If the Input Descriptor schema object uri is a hashlink or similar value that points to immutable content, then the content of the retrieved schema must also match
-
Some entries in DIF documentation are addressing
nested credentialsandnested paths, which are currently only partially supported.
-
This is the first Alpha release of the Presentation Exchange typescript library. Please note that the interfaces might still change a bit as the software still is in active development.
-
Alpha release:
- Input Evaluation
- Credential Query (partially available)
- Utilities
-
Planned for Beta:
- pejs.selectFrom() method