ES-842 (#1046)

Signed-off-by: ase-101 <[email protected]>
mosip · Dec 12, 2024 · ec90140 · ec90140
1 parent cc8cc32
commit ec90140
Show file tree

Hide file tree

Showing 2 changed files with 20 additions and 10 deletions.
diff --git a/esignet-service/README.md b/esignet-service/README.md
@@ -29,6 +29,9 @@ Kindly check our docker compose setup files to run eSignet locally [here](../doc
 
 ## Caching details
 
+All the transaction details are stored in cache. We support simple(in-memory) and redis cache. The way transaction is added or evicted from 
+the caches on every stage of OIDC transaction is detailed in the below tables.
+
 UI transaction
 
 | Endpoint     | Cache                                               | Evict                                               |
@@ -112,7 +115,6 @@ The eSignet service can run independently of a config server, yet remains flexib
 
 This approach gives you the flexibility to run eSignet in a standalone mode or connect it to an external configuration server as your setup requires.
 
-
 ## API document
 
 eSignet API documentation can be found [here](../docs/esignet-openapi.yaml)

diff --git a/esignet-service/src/main/resources/application-default.properties b/esignet-service/src/main/resources/application-default.properties
@@ -28,15 +28,15 @@ mosip.esignet.auth-challenge.PWD.max-length=30
 
 mosip.esignet.auth-challenge.BIO.format=encoded-json
 mosip.esignet.auth-challenge.BIO.min-length=500
-mosip.esignet.auth-challenge.BIO.max-length=4000
+mosip.esignet.auth-challenge.BIO.max-length=500000
 
 mosip.esignet.auth-challenge.WLA.format=jwt
 mosip.esignet.auth-challenge.WLA.min-length=500
-mosip.esignet.auth-challenge.WLA.max-length=800
+mosip.esignet.auth-challenge.WLA.max-length=1000
 
 mosip.esignet.auth-challenge.KBI.format=base64url-encoded-json
 mosip.esignet.auth-challenge.KBI.min-length=50
-mosip.esignet.auth-challenge.KBI.max-length=100
+mosip.esignet.auth-challenge.KBI.max-length=500
 
 mosip.esignet.auth-challenge.PIN.format=number
 mosip.esignet.auth-challenge.PIN.min-length=6
@@ -60,16 +60,18 @@ mosip.esignet.header-filter.paths-to-validate={'${server.servlet.path}/authoriza
   '${server.servlet.path}/authorization/complete-signup-redirect' }
 
 ## captcha validation is enabled for the auth-factors - otp, pwd, bio and pin.
-mosip.esignet.captcha.required=
+mosip.esignet.captcha.required=send-otp,pwd,kbi
 mosip.esignet.captcha.validator-url=http://captcha.captcha/v1/captcha/validatecaptcha
 mosip.esignet.captcha.module-name=esignet
 mosip.esignet.captcha.site-key=${esignet.captcha.site.key}
-mosip.signup.send-challenge.captcha-required=false
 
 ## Applicable for signup redirection to update profile
-mosip.esignet.signup-id-token-expire-seconds=1800
+mosip.esignet.signup-id-token-expire-seconds=300
 mosip.esignet.signup-id-token-audience=mosip-signup-oauth-client
 
+## Transaction halted with prepare-signup-redirect wait time to resume back with complete-signup-redirect API
+mosip.esignet.signup.halt.expire-seconds=1800
+
 ## ------------------------------------------ e-Signet binding ---------------------------------------------------------
 mosip.esignet.binding.salt-length=16
 mosip.esignet.binding.audience-id=esignet-binding
@@ -210,7 +212,7 @@ mosip.esignet.cache.expire-in-seconds={'clientdetails' : 86400, \
 'bindingtransaction': 600, \
 'apiratelimit' : 180, \
 'blocked': 300, \
-'halted' : ${mosip.esignet.signup-id-token-expire-seconds} }
+'halted' : ${mosip.esignet.signup.halt.expire-seconds} }
 
 ## ------------------------------------------ Discovery openid-configuration -------------------------------------------
 
@@ -257,7 +259,8 @@ mosip.esignet.discovery.key-values={'issuer': '${mosip.esignet.domain.url}' ,\
   \ 'claims_locales_supported' : {'en'}, \
   \ 'request_parameter_supported' : false, \
   \ 'display_values_supported' : ${mosip.esignet.supported.ui.displays}, \
-  \ 'ui_locales_supported' : {'en'} }
+  \ 'ui_locales_supported' : {'en'},\
+  \ 'claims_in_verified_claims_supported' : { 'name','address','gender','birthdate','picture','email','phone_number' } }
 
 ##----------------------------------------- Database properties --------------------------------------------------------
 mosip.esignet.database.hostname=${database.host}
@@ -350,7 +353,7 @@ mosip.kernel.keymgr.hsm.health.check.encrypt=true
 # 3. If esignet is deployed with MOSIP IDA, then 'resend.otp.delay.secs' must be the same as 'mosip.kernel.otp.expiry-time'
 
 mosip.esignet.ui.wallet.config={{'wallet.name':  'walletName', 'wallet.logo-url': '/images/qr_code.png', 'wallet.download-uri': '#', \
- 'wallet.deep-link-uri': 'inji://landing-page-name?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }}
+ 'wallet.deep-link-uri': 'io.mosip.residentapp.inji://wla-auth?linkCode=LINK_CODE&linkExpireDateTime=LINK_EXPIRE_DT' }}
 
 mosip.signup.domain.url=https://${mosip.signup.host}
 mosip.esignet.ui.signup.config={'signup.banner': true, 'signup.url': '${mosip.signup.domain.url}/signup'}
@@ -369,8 +372,13 @@ mosip.esignet.ui.config.otp.length=6
 mosip.esignet.ui.config.password.regex=^.{8,20}$
 mosip.esignet.ui.config.password.max-length=20
 mosip.esignet.ui.config.username.regex=.*
+
+## Prefix and Postfix support is added to support MOSIP handle feature, Prefix will be visible in the oidc-ui, but
+# postfix is automatically added to entered individualId. Finally, the individualId sent to the backend is with both
+# prefix and postfix appended if configured.
 mosip.esignet.ui.config.username.prefix=
 mosip.esignet.ui.config.username.postfix=
+
 mosip.esignet.ui.config.username.max-length=12
 mosip.esignet.ui.config.username.input-type=text