The changelog format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Substituted the old data-service that was pointing to the Catena-X NG at Home repo to the new tx umbrella simple data service
- Removed all the catena-x ng references from the documentation
- Added unit tests for the dsp endpoint parsing functionality
- Added digital product pass compatibility matrix file to the repo root path
- Updated typos and missing explanations in the dpp-verification documentation.
- Fixed typo in
AttributeCertificationRecordwhich short name wasamr, it was a typo and was corrected toacr. - Aligned charts for dpp-verification add-on configuration in the configmap -> #390
- @Deprecated old function to parse dsp endpoint with bpns.
- Updated default INT urls to the Association INT environement url path.
- Managed integration of latest IRS version chart: 7.4.0 and tested compatibility
- AssetId field removed from
transfer-requestmodel. Deprecated by the EDC v0.7.3 V3 Management Api -> #390
- Fixed issue with dsp endpoint parsing/building from Digital Twin submodelBody field. -> #390
- Fixed policy chart misconfiguration for the passport and digital twin registry -> #390
The following changes are added in the DPP Verification:
- Added New diagrams explaining how the “application” interact in the Attribute Verifacation Process
- Added New diagrams explaining more details on the implementation done in R24.08
- Added description to explain the diagrams and processes
- Added documentation about Certified Snapshot Credential (CSC) and Attribute Verification Record (AMR)
- Added SAMM Aspect Models to indicate the semantics of the Different Credentials
- Added definition of Cretified Data Credential (CDC) structure
- Added definition of CSC structure -> Issued the first CSC Credential
- Added definitions of purpose and structure from the ARM (Attribute Certification Record)
- Add a new section to show the Schemas of the verification aspects
- Added detailed description about the previous investigation and information about type level verification
- Added explaination how the Digital Twin can be referenced technically
- Added explanation on how the wallet interacts with the digital product pass app, and how it issues the credentials
- Added reference the components (wallet, dpp-backend addon) and where the implementation “code” is located
- Updated copyright headers in dpp verification
- Updated spring boot dependencies, reported by dependabot
- Updated digital twin registry chart version to
v0.5.2 - Updated EDC version to
v0.7.3in helm charts - Adapted backend to the EDC
v0.7.3 - The following changres are updated in the DPP Verification
- Updated the
v1.0of the Verification Concept and identified improvements - Fixed incoherences and the feedback provided by Nick Landgrover
- Refactored existing diagrams to give a clear view and explanation of the concept
- Updated our
firstsequence diagrams, they are really outdated - Updated the aspect semantics and explain where to find documentation about the schemas
- Updated the
- Fixed EDC compatibility issues in the backend #380
- Fixed frontend metadata issues in the Exchange tab #373
- Fixed frontend issues regarding the data integrity #372
- Fixed all the language typos in the Documentation (scanned with a tool)
- Fixed Springboot version to resolve the tomcat: Improper Handling of Exceptional Conditions
- chore(deps): bump docker/build-push-action from 5 to 6 by @dependabot in #355
- chore(deps): bump github/codeql-action from 2.25.2 to 3.25.11 by @dependabot in #356
- chore(deps): updated spring-boot dependencies by @saudkhan116 in #357
- Added digital product pass verification schemas
- Added Certified Data Credential SAMM Semantic Model
- Added schemas and examples of the credentials
- Added the simple wallet component built in python
- Added functionality to issue certified data credentials or any verifiable credential with datamodel v2
- Added functionality to verify credentials with JsonWebSignature2020
- Added DID method to visualize the public key
- Added api translator from SAMM json schema to JSON-LD Context
- Added bpn authorization mechanism with api keys
- Added storage of credentials
- Added private and public key managers
- Added the Verification Module with all the necessary changes to verify a digital product pass Certified Data Credential
- Added wallet service and configuration so that the backend can communicate with the Simple Wallet
- Added test data to the serial part items in dpp-tutorial
- Added translations for verification addon
- Added verification to dpp-frontend to visualize verification details of the aspect data
- Added eclipse-dash-license action and workflow
- Added enable/disable feature to the dpp-frontend helm chart
- Moved all the "core" backend components to the "core" folder so that the application would be modular.
- Updated configurations and implemented verification configuration
- Updated licenses from charts
- Updated license headers in workflow files
- Refactor and optimize workflows
- Updated user(10001)/group(10001) ids to Dockerfiles and helm values
- Moved hardcoded values from helm templates and make them configurable from helm values
- Updated PULL_REQUEST_TEMPLATE.md
- Updated Arc42.md
- Updated AdminGuide.md
- Updated copyright license headers in the entire source code and documentation
- Removed GHCR references from workflows
- Removed standalone backend helm chart from the dpp-backend directory
- Fixed issues from the latest models (DPP, BatteryPass and TransmissionPass)
- Updated wallet Dockerfile to fix
no-cachehigh vulnerability
- chore(deps): bump vite from 4.5.2 to 4.5.3 in /dpp-frontend by @dependabot in #348
- chore(deps): bump github/codeql-action from 2 to 3 by @dependabot in #297
- chore(deps): bump docker/build-push-action from 5 to 6 by @dependabot in #334
- chore(deps): bump requests from 2.31.0 to 2.32.2 in /dpp-backend/scripts by @dependabot in #345
- chore(deps): bump braces from 3.0.2 to 3.0.3 in /dpp-frontend by @dependabot in #340
- Added a new file
LICENSE_non-codefile in root level with the contents of the CC-BY-4.0 license - Added dpp-tutorial to step-by-step guide (readme files) of DPP worksession at the Tractus-X Community Days:
- deployment.md
- data-provision.md
- aspect-model.md
- data-consumption.md
- digital-twin-provision.md
- qr-code.md
- Updated the contents of "Project Licenses" and "Terms of Use" sections to the
CONTRIBUTING.mdfile - Updated "Declared Project License" section in
NOTICE.md. - Updated the license header and notices to following readme files:
- main README.md
- /docs/*
- /dpp-backend/*
- /dpp-tutorial/*
- /deployment/*
- /dpp-verification/*
- AUTHORS.md
- SECURITY.md
- INSTALL.md
- NOTICE.md
- CONTRIBUTING.md
- CHANGELOG.md
- Updated dpp-frontend to support the following new models:
- Digital Product Pass
v5.0.0 - Battery Pass
6.0.0 - Transmission Pass
3.0.0
- Digital Product Pass
- Updated EDC version
v0.7.0 - Updated IRS version
v7.1.3
- Fixed token refresh for keycloak plugin in frontend
- Fixed IRS configuration keys in docker entrypoint script for frotnend
- Fixed CORS issue in frontend #274
- Added security assessment report in /docs for the threat modeling
- Added SingleApiRequest class for the requested data for the single API.
- Added SingleApiConfig class to had configurations related to the single API.
- Added Policy Check configuration in helm charts
- EDC Util methods for asserting the policy configuration against the actual constraints
- Methods for parsing the policy contraints
- Unit tests for testing the policy evaluation feature
- Policy configuration guide added
- EDC v0.7.0 models
- Optimization in the catalog query using
bpn - Updated EDR structure
- Added
lombokdependency to speed the development - Added security assessment documentation
- Added Digital Product Pass Verification Concept initial documentation
- Updated postman collection and tested end-to-end data exchange journey with EDC v0.7.0
- Updated policy in testdata file
- Updated and renamed the following readme files in /docs
- docs/admin guide/ -> docs/admin/
- docs/arch42/ -> docs/architecture/
- docs/userManual/ -> docs/user/
- docs/infrastcuture as code/ -> docs/security/infrastructure-as-code/
- docs/secrets management/SECRET_MANAGEMENT.md -> docs/security/secrets-management/SecretsManagement.md
- docs/data retrieval guide/data-retrieval -> docs/data-retrieval/README.md
- docs/business statement/ -> docs/interoperability/Interoperability.md
- Updated all relevant references from the above files
- Updated dpp helm values
- Updated ApiController with the singleApi POST method.
- Updated ContractController by creating call methods (create, search, agree and status) without the authentication step to call in the Single API.
- Updated AuthenticationService by adding the isSingleApiAuthenticated method to authenticate the single API key.
- Updated application.yaml with the single api configurations.
- Updated deployment-backend.yaml with the oauth.apiKey.
- Updated values-int/beta/dev.yaml files with the oauth.apiKey.
- Updated spring boot to version
v3.2.5fromv3.2.4 - Updated EDR structure to match new EDC 0.7.0 one
- Deleted values-dev.yaml and values-beta.yaml from helm charts
- Fixed issue with multiple contract and policies parsing
- Optimized data sovereignty checks removing spotted bugs
- Fixed issue when policy is selected in the frontend
- Fixed issue when backend is not available in the fronted
- SingleApiRequest class for the requested data for the single API.
- SingleApiConfig class to had configurations related to the single API.
- ContractService class to move all the processing logic from the API and Contract controllers to this service.
- Added the following Industry Core changes to the policy and digital twin:
- Added
manufacturerIdanddigitalTwinTypeto the specificAssetIds in digital twin registry - Added localIdentifiers to the SerialPart aspect model
- Added
- Updated ApiController with the singleApi POST method.
- Updated ContractController by creating call methods (create, search, agree and status) without the authentication step to call in the Single API.
- Updated AuthenticationService by adding the isSingleApiAuthenticated method to authenticate the single API key.
- Updated application.yaml with the single api configurations.
- Updated deployment-backend.yaml with the oauth.apiKey.
- Updated values-int/beta/dev.yaml files with the oauth.apiKey.
- Refactored workflows where required
- Moved frontend source files into dpp-frontend directory
- Made data-service chart independent from the edc-provider chart
- Renamed Keycloak to IAM
- Re-organized data-consumer and data-provider artifacts
- Re-organized directory strcuture for docs and deployment folders
- Updated documentation references where required
- Updated infrastructure guide
- Updated testdata script to allow EDC constrained policy for the registry
- Updated ApiController with the singleApi POST method.
- Updated ContractController by creating call methods (create, search, agree and status) without the authentication step to call in the Single API.
- Updated AuthenticationService by adding the isSingleApiAuthenticated method to authenticate the single API key.
- Updated application.yaml with the single api configurations.
- Updated deployment-backend.yaml with the oauth.apiKey.
- Updated values-int/beta/dev.yaml files with the oauth.apiKey.
- Refactored the swagger workflow
- Updated: as agreed removed BASF from the license and license headers and added CGI instead
- Deleted unused files/directories/docs/images
- Removed environment-specific values files from helm charts
- Removed MOCKed json payloads
- Removed docker directory
- Deleted veracode-pipeline workflow (replaced by CodeQL and dependabot)
- Fixed tagging issue in swagger workflow
- Fixed table formatting in main
README.md
- chore(deps): bump actions/upload-artifact from 3 to 4 by @dependabot in #214
- chore(deps): bump helm/chart-testing-action from 2.3.1 to 2.6.1 by @dependabot in #216
- chore(deps): bump actions/setup-python from 4 to 5 by @dependabot in #220
- chore(deps): bump veracode/veracode-uploadandscan-action from 0.2.1 to 0.2.6 by @dependabot in #218
- chore(deps): bump actions/checkout from 3 to 4 by @dependabot in #284
- chore(deps): bump docker/build-push-action from 3 to 5 by @dependabot in #283
- chore(deps): bump container-tools/kind-action from 1 to 2 by @dependabot in #285
- chore(deps): bump github/codeql-action from 2 to 3 by @dependabot in #281
- chore(deps): bump follow-redirects from 1.15.4 to 1.15.6 by @dependabot in #258
- chore(deps): bump azure/setup-helm from 3 to 4 by @dependabot in #292
- chore(deps): bump helm/chart-releaser-action from 1.4.1 to 1.6.0 by @dependabot in #291
- chore(deps): bump actions/setup-java from 3 to 4 by @dependabot in #290
- Refactored dpp-script by adding AppId as a script parameter
- Updated the encoding scheme to base64 to the lookup/shells?assetIds... in dpp-backend
- Updated the digital twin registry version to v0.3.31
- Updated postman collection to adjust the APIs from EDC
v0.6.0 - Updated IRS collection to change authentication process from OAuth2 to the API-Key
- Updated models to support the new EDC 0.6.0 semantics (alias for retro-compatibility enabled)
- Updated edc-consumer and edc-provider helm charts version to
v0.6.0 - Updated the catalog request semantics
- Optimized/refactored the contract negotiation and transfer flow.
- Updated Data Plane Service data parsing
- Updated the following readme files:
- Postman readme
- dpp-script readme
- Updated translations
- Updated battery graph
- Added timeout in negotiation and transfer requests for avoiding infinite loops. When status from transfer does not changes from STARTED.
- Added missing static units
- Added missing data fields
- Renamed "Catena-X" to "Tractus-X" in header license prefix
- Updated the following changes in the frontend:
- Updated visualization and selection of policy
- Changed styles of buttons and radio button in the policy dialog box to the standard styles guidelines
- Updated "Help" link to point the end user manual
- Updated end user manual readme
- Increased timeouts to API calls in the backend
- Added the mechanism to parse the
ODRLpolicy structure in frontend
- Added missing german translations to the transmission pass
- Added missing german translations to the policy selection feature
- Integrated dependabot to automate the dependencies updates
- Updated axios library from
v1.6.0tov1.6.7to fix vulnerability - Updated the license headers in all the files to the latest "license and copyright header" of 2024
- Fixed tabs bugs related to translations
- Fixed translations of battery pass and digital product pass
- Fixed missing additional data visualization
- Fixed missing total sources visualization
- Added policyId parameter to the
/agreeapi. - Added mechanism to get a policy by id from a catalog contract
- Added frontend logic to call the
/declineand/cancelbackend APIs - Added reload option in case of error
- Added/fixed logging of the Digital Twin Registry Contracts and which policy was selected (Data Souverenighty improvement)
- Added util method to move files from one path to another
- Added functionality to treat more than one policy and more than one contract, allowing user to decide
- Added safety functionalities to make sure that the contract selected is correct
- Added Policy selector when autosign is not enabled
- Added Contract JSON details display
- Added Agree/Decline button for contract/policy
- Added fixes in backend and frontend integration
- Added pydoc comments to the getPassport.py
- Added access-token parameter to authorize the APIs without providing username/password and company
- Updated versions from container base images
- Adjusted the non root user ids in Dockerfiles and dpp helm chart configurations
- Updated diagrams in Arc42, Data Retrieval Guide to editable drawio svgs
- [BRAKING CHANGE] Renamed API from sign to negotiate /agree
- Bumped Vite to version
>=4.5.2 - Updated the frontend to allow the AutoSigning of contracts.
- Optimized temporary directory logging of the DTR negotiation
- Updated logging and readme
- Updated license header
- Updated user manual readme by adding the policy selection screenshots
- Fixed issue related to
sleepyEDCs, allowing the backend to re-request the contract negotiation when the EDC does not respond.
- Added Frameagreement conditions to the provider configuration
- Added Unit Tests for Managers and for Services
- Added changes from version
v1.0.0to versionv2.0.0for every component involved - Added iconMapping for all components involved in DPP
v2.0.0 - Added multi-language feature that supports currently
ENandDE - Added back button in the welcome page
- Added
timeToLiveattribute to discovery service model in the dpp-backed - Added
readOnlyRootFilesystemto the container security context in helm charts - Added Serial Part aspect in the drill down components
- Added
notice.mdto include Notice for docker images section to be only part of DockerHub description
- Cleaned up necessary scripts -Refactored the DPP and IRS postman collections
- Updated the deployment and testing directory structure and their references in relevant documentation
- Updated license header and deployment directory references in the following readme files:
- Admin guide
- Arc42
- Getting-Started guide
- Updated test directory stricture in dpp-backend
- Updated the app url from https://materialpass.int.demo.catena-x.net to https://dpp.int.demo.catena-x.net
- Updated the payloads of asset, policies, contract definition, digital twin and its aspects to align with the DPPTriangle document v1.1.0
- Updated the following frontend content:
- Condition for "commercial.warranty" in General Cards
- Mocked passports
- Loading page translation
- Translation files
- Characteristics component
- Identification component
- Sustainability component
- Typology component
- Updated helm template to provide security context values from helm vaules file
- Updated kics workflow
- Updated user manual, deployment guide
- Updated year 2024 to the license headers
- Updated diagrams to an editable version in
.svgin business statement readme - Updated
README.mdandUNIT_TESTS.mdfor the dpp-backend - Updated versions in docker workflows and setup-java action
- Refactor docker workflows
- Updated Notice for docker images section in a main
README.md
- Added Frameagreement conditions to the provider configuration
- Added Unit Tests for Managers and for Services
- Added changes from version
v1.0.0to versionv2.0.0for every component involved - Added iconMapping for all components involved in DPP
v2.0.0 - Added multi-language feature that supports currently
ENandDE - Added back button in the welcome page
- Added
timeToLiveattribute to discovery service model in the dpp-backed - Added
readOnlyRootFilesystemto the container security context in helm charts
- Cleaned up necessary scripts -Refactored the DPP and IRS postman collections
- Updated the deployment and testing directory structure and their references in relevant documentation
- Updated license header and deployment directory references in the following readme files:
- Admin guide
- Arc42
- Getting-Started guide
- Updated test directory stricture in dpp-backend
- Updated the app url from https://materialpass.int.demo.catena-x.net to https://dpp.int.demo.catena-x.net
- Updated the payloads of asset, policies, contract definition, digital twin and its aspects to align with the DPPTriangle document
v1.1.0 - Updated the following frontend content:
- Condition for "commercial.warranty" in General Cards
- Mocked passports
- Loading page translation
- Translation files
- Characteristics component
- Identification component
- Sustainability component
- Typology component
- Updated helm template to provide security context values from helm vaules file
- Filtered out unnecessary nnecessary/unused files
- Added function to check for duplicated DTRs in the temporaryStorage
- Added check for skipping the check of all BPNs when the DTRs are not available for security and optimization
- Added
vue-i18n v9.2.2library that will be used in the releasev2.1.0with the translations - Added check to fix bug related to invalid BPN endpoints in cache
- Updated header license of modified files to match the new year 2024
- Updated Axios from version
v0.8.1->v1.6.0 - Updated Spring Boot from version
v3.1.5->v3.2.1 - Logback from Log4j got updated with the Spring Boot
v1.4.11->v1.4.14
- Fixed the backend IRS exception handling, for detecting failure when job does not start
- Fixed misconfiguration of config maps related to the temporaryStorage
- Fixed incorrect authors names
- Added components to display a Transmission Pass in frontend
- Added MOCK file with the transmission pass in frontend
- Added permission listener & reloader in frontend
- Added camera toggle component in frontend
- Added Decentral Digital Twin Registry configuration payloads
- Added IRS configuration guide
- New Data Retrieval Guide added with detailed information how to retrieve data in Catena-X like the DPP.
- Added new structure of files for the Arc42
- Added new Authentication & Authorization chapter in the Arc42
- Added detailed description next to the API diagrams at the Arc42
- Added IRS Integration documentation at the Arc42
- Added diagrams in xml form for further edition
- Added Check of BPN Number in Frontend (With Trigger in Configuration)
- Added Check of BPN Number in Backend (With Trigger in Configuration)
- Added Check for appId Roles in Frontend (With Trigger in Configuration)
- Added Check for appId Roles in Backend (With Trigger in Configuration)
- Added new security checks in the backend and frontend
- Added new non authorized view in the frontend
- Added script to retrieve any type of aspect data using the dpp backend component
- Added README.md on how to execute the script with certain parameters
- Refactor frontend code to be compliant with transmission pass 2.0.0.
- Refactor Responsiveness of frontend
- Updated URL check in frontend
- Corrected the payloads ids and the configurations
- Updated the Install.md file with a section to install the prerequisites and configure values.yaml files
- Updated the file structure from the Arc42
- Updated data retrieval api diagrams with better quality
- Updated context diagram with a new easy context
- Updated Arc42 Descriptions in the Technical Integration chapter
- Updated data uploading script by adding physical dimensions aspect
- Refactored helm chart values configuration.
- Refactored backend values chart configuration
- Update the IRS version to 4.2.0
- Adapted the springboot configuration structure
- Update the default policies
- [BREAKING CHANGES]: Updated the path from the backend from
/consumer-backendto just/dpp-backendto declare the to standalone application
- Added script to automate the uploading of various passport types
- Added script to delete data from the data provider
- Added check for empty or null contractIds with retry attempts
- Added descriptive logs to search and create methods
- Updated ingress settings and backend configuration in the helm chart
- Refactored helm values to show only user relevant settings
- Fixed the timeout time for each negotiation
- Fixed the long waiting time by implementing timeout when doing the negotiation
- Fixed the null contract ids creation
- Remove the legacy style to register/delete the testdata from the data provider
- Added timeout for the
BPN DiscoveryandEDC DiscoveryAPIs returned in the Discovery Service API. - Created a new
doPostfunction in theHttpUtilsthat allows the usage of timeouts in API calls. - Create a new
timeoutfunction inThreadUtilsto be applied to the call of functions.
- New IRS Service which is able to communicate with the IRS component api.
- Added condition to deactivate the IRS
- Added tree manager to manage the tree of components used by each irs process
- Added structure to manage the information coming from the IRS and jobs initiated
- Enabled callback mechanism with the IRS component
- Created
/api/irs/{processId}/treeand/api/irs/{processId}/componentsAPIs - Added process to refresh the cache when the transfer has failed
- Added timestamp to every known DTR in the cache for refreshing the contract id every time it is reached.
- Added a mechanism to parse/update file system json files by specific properties, avoiding conflicts
- Enabled irs search in frontend
- Added info bar in component search
- Create visual tree of components
- Enabled drill down in tree of components
- Add IRS configuration to the helm values
- Added Secondary Material Content (SMC) json payloads, edc assets to test the SMC use case
- Update dpp/irs test data edc assets and script to register them
- Fix IRS tree component bugs related to the Digital Twin parsing
- Fix IRS job tracker to one single job.
- Fix bug related to the broadcast search of digital twin registry
- Fix minor bugs related to the digital twin search and the caching mechanism
- Fix bug related to the passport retrieval by implementing check for transfer complete
- Fix database credentials in the edc postgres configuration
- Fix the condition to the publish dpp backend workflow
- Removed cypress from
package.jsondependencies - Removed unused devDependencies of
@babel
- Fixed vulnerabilities related to
crypto-js,semver,netty-codec.- Updated
Spring Bootto versionv3.1.5 - Updated
crypto-jsto versionv4.2.0 - Overrided
semverto versions over^v7.5.3
- Updated
- Added comments at every classes explaining their purpose
- Added comments at every methods explaining what its done, each parameter, what it returns and if it throws exceptions
- Added SupressionWarnings("Unused") annotation in every Class and/or method that is unused, to decide if it is to delete or let it be for future use
- Added New class for the new model of Digital Product Passport
- Added to retrieve any type of bamm aspect from a submodel endpoint (searching by the semanticId included in the digital twin)
- Added new structure to parse the passport payload and display it dynamically
- Added new components to display the passport
- Added visualization of the "Digital Product Pass" aspect in the frontend
- Added a second check for "transfer-completed" in history when passport status is checked in the frontend
- The Aspect Submodels are searching in the Digital Twin by their
semanticIdinstead ofidShortparameter - Updated DTR search as type instead of ID
- Updated the Apis that communicate with the backend
- Updated DTR configuration to support the new DTR API
v1.0
- Removed the passport's version requirement
- Removed version from the Search Api call
- Deleted configuration variables related with central search from application.yaml
- Deleted old version of DigitalTwin, Submodel and Endpoint, no longer used and renamed the most recent versions.
- Deleted all code related to the central search.
- Removed the central
Digital Twin Registrysupport
- Fixed a bug related to the discovery service when more than one search endpoint would be available
- Fixed bug related to the passport search and the transfer data not being available sometimes
- Added loading screen functionality in the frontend
- Create IRS component configuration for the integration with the backend application in next versions
- Created IRS postman collection for testing the APIs.
- Added the QR code scanning button in the main search view (welcome screen)
- Added support for the new dDTR lookup shells version which is (AAS 3.0) compliant.
- Updated the digital twin test payloads to match AAS 3.0 payloads which should be used for version
>v1.0.0of the DPP - Updated the main readme fixing notable mistakes.
-
Fixed model parsing from payloads incoming from the
Digital Twin Registrydue to their latest hotfix.- Ignored extra attributes not relevant for the Digital Product Pass application.
-
Added footer License notes in the all the documents inside
/docsto comply with the TRGs. -
Updated the Trivy workflow to fix a bug related with the configuration
- Added new structure to communicate with:
- EDC discovery
- Discovery Finder
- BPN Discovery
- New digital twin registry decentralized version
- Integration of AAS 3.0 APIs
- Added new
/createAPI to start a new process - Added BPN number checks on startup to verify
- Added a check if the EDC Consumer Connector is accesible
- Added a check if the EDC Connector BPN is the same as the Backend BPN
- Added a check if the technical user configured is valid
- Added a check if the technical user configured has the same BPN number as the EDC consumer
- Added EDC
v0.5.0support- Added new models related with the
EDC v0.5.0upgrade - Added backend compatibility with
EDC v0.4.1
- Added new models related with the
- Added persistent storage to store contract negotiation details for the data sovereignty
- Added the mechanism to split the Id into 3 parts
CX:<manufacturerPartId>:<serializedId>and check the validity of the Id used - Added support for the following Contribution guidelines (TRG) requirements:
- TRG-1.02: Added instructions to the install.md to set up and install the application
- TRG-4.02: Added base images information to the main README.md file
- TRG-4.03: Added user and file permissions to run as a non root user
- TRG-4.06: Added contents for notice for docker images
- TRG-5.01: Added helm chart requirements, remove hostnames from the ingress and environment-specific values
- TRG-5.04: Added resource management settings to limit CPU and memory utilization
- TRG-5.08: Added comments in the helm values.yaml file
- TRG-5.09: Added helm-test workflow to verify that a released helm chart works as expected
- TRG-5.10: Added support of various Kubernetes versions particularly
v1.27,v1.26,v1.25andv1.24for helm tests - TRG-5.11: Added helm-upgrade workflow to achieve pre-release upgradeability of the helm charts
- Updated frontend helm charts templates for fixing severe merge configuration bug
- Updated the models to match the new Digital Twin Registry exchange
- Optimized the processing time by adding temporary configurable processing storage
- Updated README.md file of the digital product pass components
- Updated pom.xml resources configuration
- Updated ingress annotation to support various Kubernetes versions for helm tests
- Updated the EDC
v0.5.0configuration- Updated SSI configuration in the EDC helm charts
- Updated Passport storage and how the contract Id key is obtained from the EDR.
- Updated transfer models
- Updated helm chart configuration to match the EDC version
v0.5.0
- Updated the DPP postman collection to test the registry APIs in decentralized fashion
- Updated CONTRIBUTING.md readme file
- Updated .helmignore to ignore environment-specific values files
- Updated Chart.yaml by adding new variables home and sources
- Updated the
Backend.jsservice to call the/createbackend api, with themanufacturerPartId, before the actual search - Updated DPP documentation to align with current implemention:
- GETTING-STARTED.md
- SECRETS_MANAGEMENT.md
- Arc42.md
- Admin_Guide.md
- deployment/readme
- Fix navigation links in root readme
- User Manual Product Viewer App.md
- Consumer-backend readme
- Fixed pom.xml resources and logging configurations to resolve the security vulnerability
- Fixed indentation issue in a helm default values.yaml
- Updated the sprint boot version from
3.1.0to3.1.2to fix a high security vulnerability
- Changed exception from Discovery Service startup to a Critical Error message
- Set security checks in values file as disabled by default
- Updated helm docs in charts folder
- Added comments for documentation in swagger
- Deleted the cx-backend-service from the EDC Consumer and Provider deployments
- Removed inrelevant infrastructure files
- Remove not necesarry logs that affected the performance
- Added new
/endpointapi to store the payload incomming from the EDC data plane - Added the encryption and decryption in AES from passport payload.
- Added AES unit tests
- Added the DataPlane service in the backend to comunicate with the data plane.
- Added process manager to manage the asyncronous processes executing in parallel.
- Added process dataModel in session.
- Added new passport util.
- Added new models to negotiate and transfer with the new EDC
v0.4.1 - Added new utils methods like to delete files.
- Added contract controller apis
- Added contract search
/api/contract/search - Added contract decline
/api/contract/decline - Added contract sign
/api/contract/sign - Added contract cancel
/api/contract/cancel - Added contract status
/api/contract/status
- Added contract search
- Added new Backend configuration
- Integrated the EDC Data Plane retrieval logic
- Added
.tractusxmetafile - Align chart version with app version.
- Added file system logging of the negotiation and transfer.
- Added new contract attributes from response.
- Optimized the retrieval time to ~4 seconds.
- Refactored git workflows to add the dpp frontend and backend container images onto Docker Hub registry in order to have public access to the images.
- Added docker.io in digital-product-pass helm chart.
- Commit ID and Repo URL added in frontend image
- Frontend component to display legal information
- Added components to display more contract information.
- Fixed bug related to backend get status, where it looped over the status received.
- Added the AUTHORS.md
- Updated charts configurations related to the backend.
- Updated the EDC test charts to remote the cx-backend-service configurations
- Updated payloads
- Update the backend chart configuration
- Refactor secrets structure
- Updated postman collection
- Updated veracode workflow
- Updated the backend service in the frontend to call the async backend apis.
- Updated footer of the application to add the legal information dialog.
- Updated the Mock payloads in the frontend component.
- Updated pom.xml file adding a resource tag to include files into /META-INF folder inside JAR.
- Added logic to create and authenticate with unique session tokens the sign and other methods.
- Added Encryption of passport payload when coming from Data Plane endpoint, until it is retrieved to the user which is authenticated and is using the unique session token as decryption key.
- Added unique signKey to backend, which is used to the unique session key.
- Added new welcome screen with basic description of the application
- Added new search bar.
- Added new QR code advance searching mechanism
- Optimized the responsiveness of the welcome screen and the search field.
- Optimized UX to match the view of the passport.
- Upgraded Spring Boot version to
v0.3.1
- Updated the NGINX configuration
- Updated ingress templates in product helm charts
- Added the base image recommended by the TRGs:
nginxinc/nginx-unprivileged:stable-alpinein the frontend image generation.
- Updated version from vite to
v4.1.5to fix critical vulnerability raised by the dependapot: https://github.com/eclipse-tractusx/digital-product-pass/security/dependabot/2
- Updated configuration charts
- Updated backend utilities (added spring boot to the classes)
- Updated tests to use spring boot to autowire the components.
- Added new configuration classes
- Added new methods to get the configurations at the start of the services
- Deleted the configuration util (old alternative to spring boot configuration)
- Deleted the tests for configuration util.
- Adapted springboot application yaml as a single source of configuration
- Externalized the consumer-backend configuration through k8s configmaps and helm values
- Updated DPP documentation to align with current implemention:
- GETTING-STARTED.md
- RELEASE.md
- SECRETS_MANAGEMENT.md
- Arc42.md
- Admin_Guide.md
- deployment/readme
- Fix navigation links in root readme
- User Manual Product Viewer App.md
- Consumer-backend readme
- Removed environment-specific configurations from consumer-backend
- Removed standalone consumer-ui and backend helm charts
- Added an umbrella helm chart digital-product-pass, containing consumer-frontend and consumer-backend helm deployments together
- Prepare environment-specific values.yaml
- Prepare values.yaml for default mode
- Added Tooltip Component
- Added Bar Component Fix
- Added new Readme to guide the developer/user thought the documentation
- Blocked accessExcalation in the frontend helm templates.
- Updated pull request (PR) template description
- Upgrade battery pass test data for Passport Semantic version
v3.0.1 - Adjusted footer and search components in consumer frontend
- Updated documentation for the digital product pass (Arc42 + Admin Guide)
- Removed history table from Dashboard page
- Implemented new User Interface (UI) design for battery passport page
- Added digital product passport (DPP) logo and favicon icon for DPP frontend component
- 404 and Error message in consumer backend handler
- Added null and none checks in the passport (improved stability)
- Reference to the back button in consumer frontend
- Updated battery QR code styles
- Security vulnerabilities in veracode scanning tool
- Fixed swagger ui display api documentation
- Improved responsiveness from the application
- Fixed security vulnerabilities related to Spring Boot
v3.0.5by upgrating tov3.0.6
- Updated Spring Boot Version from
v3.0.2tov3.0.5fixing the following vulnerable libraries:- Spring Expression v6.0.4 ->
v6.0.7 - JSON Smart v2.4.8 ->
v2.4.10
- Spring Expression v6.0.4 ->
- Aligned header structure with the current
License.mdfile in all the project documents headers.
- Updated documentation
- Upgraded EDC version to 0.1.6
- Refactor passport view
- Support passport semantic version 3.0.1
- Upgraded frontend and backend integration to permanent
- Updated Exception handling and application robustness
- Updated Swagger documentation
- Removed login/ logout auth APIs
- Updated postman collection for INT and DEV to retrieve passport version 3.0.1
- Refactor assets registration scripts for the mock provider
- Change the mock provider endpoint configuration from
/providerto/BPNL000000000000 - Update all environment configuration files to adapt semantic version 3.0.1
- Upgraded frontend mockups to support semantic version 3.0.1
- Externalized the frontend configuration using helm charts
- Added tooltip component in frontend
- Added veracode workflow_dispatch
- Added search in backend for submodel with
idShortasbatteryPassin the Digital Twin Registry (DTR) - Added
endpointAddressparsing in backend with and withoutBPN - Added search for
assetIdin a provider catalog using the scheme{DigitalTwinId}-{DigitalTwinSubmodelId} - Enabled "OPTIONS" method in backend CORS configuration
- Allowing local browser calls to the backend
- Support end-to-end integration with external companies
- EsLint configuration
- Veracode secret names for tractusx
- Removed Wrapper.js from frontend component
- Removed additional mocks in frontend configuration
- Updated documentation, corrected links.
- Insecure SnakeYaml library version 1.33 updated to Secure version 2.0
- Reworked header component and styles to match portal
- Reworked footer component and styles to match portal
- Reworked search input and styles to match portal
- Updated image repository for consumer-ui and consumer-backend helm deployments
- Reworked table component and styles to match portal
- Refactored SCSS styles structure, allowing a optimized scalability from the application
- Updated frontend dependencies file.
- Matched portal styles to pass quality gate 5
- Refactored responsiveness from components
- Important Documentation related with the product and repository
- Fixed Swagger UI documentation (updated to correct one)
- Fixed Enter Key Search Bug (Adding submit property)
- Fixed Deployment issues.
- Fixed Incorrect image building
- Fixed Import Bugs related with integration
- Removed Keycloak Library vulnerability
- Deployment refactored to fit and follow new guidelines from DevSecOps team.
- Data soverenity printing the contract id
- Tractus-X Ready code
- Optimized the reponsive from the application
- Optimized the passport display
- Updated components with Vuetify 3, making the application more stable.