Blog
Product Update #28
On this page
TL;DR
- New release - Enterprise Auth OIDC integrations, data minimization mode and much more
- The state of identity & walt.id 2025 – The state of the digital identity market - including insights, learnings and stats and how this affects our company - walt.id.
- eIDAS2 explained – One page explaining everything you need to know about EU’s digital identity regulation.
- New walt.id website – We've completely redesigned our website.
Community Stack (0.18.0)
Below are the highlights available through 0.18.0 of the identity lib. Check out the full changelog for 0.18.0 here. Want to learn more about the identity lib in general? Check out our intro video.
Highlights
CWT Support for TokenStatusList
Verifiers can now validate CWT-based TokenStatusList credentials via our verification policies.
Digital Credential API Test App
Try out the Digital Credentials API with walt.id’s verifier for credential verification with our open-source test web-app. Inspect and edit DC API payloads and view logs during credential presentation flows.
mDoc Issuance Improvements
Update include extended key support, birth date serialization fixes, and refined cnf claim value assignment with improved holder key resolution.
Improved X.509 / IACA certificate utilities
Added PEM parsing, IACA certificate info extraction helpers, ISO country code validation and more.
Upgraded key dependencies
Updates included Kotlin, KotlinCrypto, nimbus-jose-jwt, and Next.js (security patches), reducing vulnerability exposure across the stack.
Full changelog
To learn more about other updates to the issuer, verifier, authentication, sessions, and more, please see the full changelog.
Enterprise Stack (0.18.0)
Below are the new feature highlights available through 0.18.0 of the Enterprise Stack. Check out the full changelog here. Want to learn more about the enterprise stack in general? Check out our intro video.
Highlights
OIDC Integration & Role Mapping
The Enterprise Auth API now supports OIDC as an authentication flow, including external role mapping from identity providers (e.g., Keycloak) to Enterprise Stack roles.
Learn more here
Zero-Retention / Data Minimisation Mode
A configurable zero-retention mode has been introduced for PII data in issuance and verification sessions. When enabled, session data is not persisted beyond the immediate transaction.
Learn more here
TokenStatusList Draft 15 Upgrade
TokenStatusList support has been upgraded to IETF Draft 15.
Learn more here
Annex C (DC API) Flow Support
Annex C (DC API) has been integrated into Enterprise Verifier2 Service.
X.509 Service / Store Enhancements
Updates include: stored certificate ID collision pre-checks, VICAL entry metadata validation, and certificate persistence to linked X.509 stores.
Learn more about the service and store here and here
Breaking changes
TokenStatusList upgraded to Draft 15
Status value ranges and compression behaviour have changed. Existing status list configurations should be reviewed against the Draft 15 specification before upgrading.
Full changelog
To learn more about other changes, such as database profiles, permission enforcement, system config overrides, and more, please see the full changelog.
The state of identity & walt.id 2025
Our annual blog post on the state of the digital identity market - including insights, learnings and stats to make sense of what is happening in the wallet-centric identity market and how this affects our company - walt.id.
Learn more here
eIDAS2 explained
One page explaining everything you need to know about EU’s digital identity regulation, including timelines, key terms, and role-based requirements.
Learn more here
Our new website is live!
We are thrilled to announce the launch of the newly redesigned walt.id website. Navigating our products, resources, and documentation is now easier than ever.
Check it out here
PS: If you enjoy working with our tools, make sure to leave us a ⭐ on GitHub