Releases: open-eid/SiVa
Releases · open-eid/SiVa
prerelease-3.9.0
Major changes since 3.8.1
- Includes updated DD4J version 6.0.0-RC.1
- Updated the validation of LTA signatures:
- LTA level signatures are not valid if they contain BDOC policy
- Added archiveTimestamps block with corresponding fields to the validation report when validating containers with LTA signatures
- Updated the validation of ASiC-S containers with timestamp tokens:
- ASiC-S timestamp tokens are now validated using DSS
- POE time is taken into account during validation of the time-stamped ASiC-S nested container
- Old timestamp tokens from withdrawn services produce warnings
- Re-timestamping of old timestamped ASiC-S containers is recommended to avoid future incompatibilities
- Customized ASiC-S timestamp validation policy
- Updated timestampTokens block with its corresponding fields in the validation report when validating timestamped ASIC-S containers
- Added a warning to the validation report if datafile in ASiC-S container is not covered by timestamp
- Timestamped ASiC-S with nested container must contain at least one valid timestamp to trigger the validation process for the inner container
- Updated Spring Boot to version 3.4.0
- Updated DSS to version 6.0.d4j.2
- Other dependency updates
- Removed SOAP interface
- Only timestamps from TSA/QTST services are allowed when using QES policy
- Updated exception handling
- Added Content-Disposition header to the response
- Updated documentation
release-3.8.1
Major changes since 3.8.0
- Updated DD4J to version 5.3.1 that includes a security update
release-3.8.0
Major changes since 3.7.0
- Updated Spring Boot to version 3.2.5
- Updated DSS to version 6.0.d4j.1
- Updated DD4J to version 5.3.0
- Updated Java to version 17
- SiVa now uses embedded Tomcat
- SiVa can now be configured to set file size limitations for post requests
- SiVa can now be configured to ask revocation for T level signatures during validation
- Moved integration tests to the separate repository - SiVa-Test
- Moved performance tests to the separate repository - SiVa-perftests
- SiVa now uses two separate TSLs
- Replaced deprecated WebSecurityConfigurerAdapter with SecurityFilterChain
- Other dependency updates
release-3.7.0
Major changes since 3.6.1
- Added validation warnings for containers with invalid mimetype files
- Siva-sampleapp has been moved to a new repository called siva-demo-application
- Digidoc4j version updated to 5.1.0
- DSS version updated to version 5.11.1
- Dependency updates (including JUnit 5)
release-3.6.1
Major changes since 3.6.0
- Documentation updates
release-3.6.0
Major changes since 3.5.4
- Removed the xroad validation service module and all related functionality
- DocumentType is no longer a valid request parameter
- Siva dependency check profile is now turned off by default
- Dependency updates (including Digidoc4j and DSS)
- GivenName and Surname have been added to the validation reports subjectDistinguishedName element
- Added configuration parameter for LOTL pivot mode. It is turned on by default and also applies to dd4j
release-3.5.4
Major changes since 3.5.3
- Fix for OCSP time leak
release-3.5.3
Major changes since 3.5.2
- Simple report SignedBy format improvements
- Dependency updates
release-3.5.2
Major changes since 3.5.1
- Spring Boot update to version 2.6.6
- Dependency updates
release-3.5.1
Major changes since 3.5.0
- Digidoc4j update to version 4.2.2
- Update of TSL keystore and LOTL TLS truststore
- Dependency updates