Releases: TankerHQ/sdk-react-native
v4.2.2
v4.2.1
v4.2.0
- The React Native new architecture is now supported
- The minimum supported version of React Native is now 0.71
- The minimum supported version of Android is now 23
- The minimum supported version of iOS is now 12
- Add new OpenID Connect verification flow through a new verification method, see the updated guide for details
- OIDC is now a valid pre-verified verification method
- Deprecate
createOidcNonce,setOidcTestNonce, and verification using theoidcIdTokenparam as they are now obsolete with the new OIDC verification flow - The
VerificationMethodobjects of typeoidcIdToken
now contain theprovider_idandprovider_display_nameinformation corresponding to the verification method's OIDC provider. - Improve error message for invalid ciphertexts by including the first five bytes as hex
- Invalid responses that do not come from the Tanker backend can now result in a
NetworkError, instead ofInternalError - Enable the new "transparent session" encryption formats by default.
These formats optimize resource key usage. Encryption for the same recipients will reuse the same key for several hours.
As a result, performance of encrypt and decrypt operations should be improved, due to fewer network requests.
v2.32.0
End-to-end passphrase verification
A new end-to-end passphrase verification method is now available for users who need strict end-to-end security guarantees.
See the guide for more information.
Performance improvements
Reduce the number of group and resource key lookups by sharing results from in-progress lookups between calls.
This makes concurrent operations involving groups or encrypted resources faster, as fewer round trips to the network and/or local storage are made.
For example, parallel decryption of multiple resources shared with the same group now requires only one lookup to recover the last group key instead of one lookup per resource.
Bug fix
-
Fix
encrypt()andencryptData()when called with more than ~4GB of clear data:- An overflow of an unsigned integer was causing a corruption of the encrypted data
-
Fix
decrypt()anddecryptData()when called with more than ~4GB of encrypted data:- An overflow of an unsigned integer was causing incorrect parsing of encrypted data
v2.31.0
There is no new feature or externally visible change in this version of the SDK.
v2.30.0: Merge branch 'jul/test-psc' into 'master'
- Add forward compatibility for the decryption of padded data.
- Phone number verification method can now be used with session token.
setOidcTestNonce()is available to test the new verification flow without requiring any end-user action.
Offline mode
No connection to Tanker remote services is made if not necessary, this is true when:
- The user already exists
- The device is already registered
- The operation can be completed using the device's local cache
Any user registration, device verification, group operation, new encryption or decryption of resource not in cache will open a new connection.
v2.29.1
v2.29.0
OpenID Connect
The identity verification using the OIDC has been revamped to improve security and isolation between Tanker servers and an application server using Tanker:
- A new mandatory nonce, created through
createOidcNonce(), should be used in OIDC authorization code flow. It allows:- Application server to deny any request using an IdToken already seen. Preventing Tanker from impersonating end-users
- Tanker to perform an additional challenge with end-users before accepting an IdToken. Preventing an Application server from impersonating end-users
- OIDC for provisional identity verification is not available anymore
The OIDC verification guide has been updated accordingly.