eIDAS-Node version 2.5

Current release

This page contains a collection of the resources for the eIDAS-Node version 2.5, released on 11th December 2020.

Download eIDAS-Node v2.5

Bugs, issues or suggestions?

or log a ticket via the eID Service Desk

Bundling with the German eIDAS Middleware

Download German Middleware v2.2.3.

SHA-256 hashsum

For details on how to download and operate the German Middleware see “Three Steps to integrate the German eIDAS-Middleware”. In case of further questions Member States can:

Description

Release 2.5 of the eIDAS sample implementation for Member States is an all-in-one package for the Java platform including binary distributions for Glassfish, WildFly, Tomcat, WebLogic, WebSphere and the source code (Maven project). This release is based on version 1.2 of the eIDAS Technical Specifications.

Main changes

Technical Specifications 1.2:
- Extension of Connector’s and Proxy-Service LOA validation to non-notified scheme LOAs
- Extension of Simple Protocol request to allow support to non-notified scheme LOAs
- Implementation of support for 1.1 and 1.2 eIDAS specification for Gender attribute
- Align allowed signature algorithms to eIDAS specification 1.2
- Appropriate extensions to support RequesterID
- Restriction of the node configuration to the use of TLSv1.2
- Publication of the NodeCountry
- Remove “No Specified” from Gender possible values
- Extend Light Response to allow support of SAML consent values
Break of the LightRequest / LightResponse interface:
- Add SP Country Code to Light Request interface
- Generation of LightMessage model from XSD
- Extend Light Response to allow support of SAML consent values
eIDAS Default parameters configuration
Jcache support for the eIDAS Node
Logging of messages eIDAS Node 2.x branch
Bug fixes
Security fixes
Source code fixes
Documentation fixes

Main updates in dependencies

Updates in dependencies in order to avoid reported related vulnerabilities or to get the need functionality:

Upgrade javax.servlet:jstl:1.1.2 dependency
Upgrade org.apache.santuario:xmlsec:jar:2.0.10 dependency to version 2.1.4
Upgrade current guava version 19.0
Upgraded opensaml-security-ext.version from version 1.0.5 to 1.0.7
Upgrade org.apache.httpcomponents:httpclient from version 4.5.5 to 4.5.13

Interoperability

This release has been successfully tested for interoperability with previous releases of eIDAS-Node versions v2.4.0 and v1.4.5

This release was successfully tested and works with Middleware version 2.0 (2.0.1).

For a more detailed description of the changes introduced with this release please consult the release note and section “3 Changes” found in the eIDAS-Node Migration Guide.

Member States can use this release as a sample implementation for demonstration purposes or they can adapt it as a basis for their own eIDAS scheme.

The testing tools (demo SP, demo IdP), the supplied Specific part and the Simple Protocol, should be used for demo purposes only on your local machine, and should not be deployed in your infrastructure.

Member States may report any issue or bug related to the eIDAS-Node release v2.5. They can do so by raising a ticket at the DIGITAL eID service desk.

Useful documentation

eIDAS-Node Installation Quick Start Guide v2.5	Describes how to quickly install demonstration versions of an eIDAS-Node Connector, eIDAS-Node Proxy Service, Service Provider (SP) and Identity Provider (IdP) from the distributions in this release package to enable familiarity with the DIGITAL eID software.
eIDAS-Node Migration Guide v2.5	Facilitates migration from eIDAS-Node v2.4 to eIDAS-Node v2.5
eIDAS-Node Installation and Configuration Guide v2.5	Describes the steps involved when implementing a Basic Setup and goes on to provide detailed information required for customisation and deployment. Provides a comprehensive view of eID and its components (in terms of binaries, source code and configuration files).
eIDAS-Node Demo Tools Installation and Configuration Guide v2.5	Describes the installation and configuration settings for Demo Tools (SP and IdP) supplied with the package for basic testing.
eIDAS-Node National IdP and SP Integration Guide v2.5	Provides guidance by recommending one way in which the eIDAS-Node can be integrated into your national eID infrastructure.
eIDAS-Node Error Codes v2.5	Contains tables showing the error codes that could be generated by components along with a description of the error, specific behaviour and, where relevant, possible operator actions to remedy the error.
eIDAS-Node Error and Event Logging v2.5	Provides information on the eID implementation of error and event logging as a building block for generating an audit trail of activity on the eIDAS Network. It describes the files that are generated, the file format, the components that are monitored and the events that are recorded.
eIDAS-Node and SAML v2.5	Describes the W3C recommendations and how SAML XML encryption is implemented and integrated in eID. Encryption of the sensitive data carried in SAML 2.0 Requests and Assertions is discussed alongside the use of AEAD algorithms as essential building blocks.
eIDAS-Node Security Considerations v2.5	The latest version of this document will be shared together with the final release of eIDAS-Node v2.5. The document describes the security considerations that should be taken into account when integrating and operating the DIGITAL eIDAS-Node v2.5
EUPL v1.2	European Union Public Licence.

Page tree

eIDAS-Node version 2.5

Current release

Download eIDAS-Node v2.5

Bugs, issues or suggestions?

or log a ticket via the eID Service Desk

Bundling with the German eIDAS Middleware

Download German Middleware v2.2.3.

For details on how to download and operate the German Middleware see “Three Steps to integrate the German eIDAS-Middleware”. In case of further questions Member States can:

Description

Main changes

Main updates in dependencies

Interoperability

Data integrity

Release note

Last updated 16 December 2020

Useful documentation

Describes how to quickly install demonstration versions of an eIDAS-Node Connector, eIDAS-Node Proxy Service, Service Provider (SP) and Identity Provider (IdP) from the distributions in this release package to enable familiarity with the DIGITAL eID software.

Facilitates migration from eIDAS-Node v2.4 to eIDAS-Node v2.5

Describes the steps involved when implementing a Basic Setup and goes on to provide detailed information required for customisation and deployment. Provides a comprehensive view of eID and its components (in terms of binaries, source code and configuration files).

Describes the installation and configuration settings for Demo Tools (SP and IdP) supplied with the package for basic testing.

Provides guidance by recommending one way in which the eIDAS-Node can be integrated into your national eID infrastructure.

Contains tables showing the error codes that could be generated by components along with a description of the error, specific behaviour and, where relevant, possible operator actions to remedy the error.

Provides information on the eID implementation of error and event logging as a building block for generating an audit trail of activity on the eIDAS Network. It describes the files that are generated, the file format, the components that are monitored and the events that are recorded.

Describes the W3C recommendations and how SAML XML encryption is implemented and integrated in eID. Encryption of the sensitive data carried in SAML 2.0 Requests and Assertions is discussed alongside the use of AEAD algorithms as essential building blocks.

The latest version of this document will be shared together with the final release of eIDAS-Node v2.5. The document describes the security considerations that should be taken into account when integrating and operating the DIGITAL eIDAS-Node v2.5

European Union Public Licence.