v2025.2.0

An update that introduces MFA support in Entra ID and the ability for a credential holder to manage their credential operations using the Concierge.

🚀 What’s new

New features

• Support Entra EAM (External Authentication Method) for MFA in Entra ID
• Support issuee sign-in to concierge (and API access)
• Issuees can sign in to the concierge, view issuances and presentations, accept pending issuances
• Remote issuances can be accepted via concierge sign-in
• Support claim constraints in presentation builder

Enhancements

• Remote issuances can be made:
  • without generating standard Email or SMS notifications (BYO notifications)
  • without OTP verification (acceptance via concierge sign-in)
• Support the special match-all VerifiableCredential type in presentation builder credential previews
• Improve issuee details view
  • Show issuer value (alongside mapped issuer label)
  • Add copy button for issuer and identifier values
• Move pending issuances up above issuances in data tables
• Add identity mapping docs link to CSV identity column doc notes
• OIDC sign-in screen
  • Improve render for long client names
  • Scale down QR code to fit in Microsoft auth window without scrolling vertically
• Allow authentication clients to have no logout URIs (e.g. for EAM clients)
• Lowercase all UUIDs returned by the API
• Validate usage before allowing deletion of templates (API and user interface)
• Documentation changes:
  • EAM authentication guide
  • Remote issuances changes (notification options, verification options, concierge URLs etc)
  • Document the special VerifiableCredential type
  • Link to identity mapping guide from async issuance CSV identity column doc

🛠️ Notable fixes

• Library vulnerability patching
• Handle transient MS Graph and VID service monitoring failures
• Prevent a template being set as it's own parent
• Prevent duplicate claims keys being used in a contract
• Prevent credential display colours sometimes being affected by dark-mode