Dear MOSIP Community,
We are happy to announce the release of eSignet v1.6.1 
— a feature-rich update that brings enhanced configurability, stronger security, and a more intuitive user experience. This release empowers Relying Parties (RP) with greater control over login experiences, improved UI adaptability, seamless deployment and technical enhancements.
Major Highlights
-
Customizable Login ID Types: RPs can now configure login methods such as Email, Phone, or VID, with a redesigned UI to support this flexibility.
-
Client Configuration Enhancements: Additional options in the client management endpoint offer deeper customization of eSignet behavior.
-
Purpose-Based UI: The UI dynamically adjusts based on the purpose/context of the service, delivering a more relevant experience.
Technical & Other Enhancements
-
Captcha Validation for OTP Binding: Strengthens the VC binding process with added security.
-
Mandatory
jtiin Client Assertion: Enforces the inclusion of the jti claim in JWTs for token requests. -
Unique Nonce Requirement: nonce query parameter in the authorize url should be unique for each transaction.
-
Updated Vulnerable Libraries: Security dependencies updated to address known vulnerabilities.
-
Improved Deployment Scripts: Streamlined setup for smoother and faster deployments.
To explore all the features, bug fixes, and known issues in detail, please refer to the full release notes.
Additionally, you can refer here for in-depth documentation on eSignet.
If you have any questions or feedback, feel free to contact us at community.mosip.io.
A heartfelt thanks to all developers, QA teams, and contributors who made this release possible. And to our community - your continued support and feedback are what keep us improving.
Best regards,
Rachik Sharma
Product Owner – eSignet
On behalf of the MOSIP Team