BankID added an optional userVisibleDataFormat parameter to allow Markdown syntax in userVisibleData

Relevant documentation:

Sign request example (source):

{
"personalNumber":"190000000000",
"endUserIp": "194.168.2.25",
"userVisibleData": "IFRoaXMgaXMgYSBzYW1wbGUgdGV4dCB0byBiZSBzaWduZWQ=",
"userVisibleDataFormat": "simpleMarkdownV1"
}

Hi, I just get this when I try to give path to the downloaded .pfx cert?
any idea how to link to .pfx file?

fs.js:663
return binding.open(pathModule.toNamespacedPath(path),
ENOENT: no such file or directory, open '....pfx'

http://play.google.com/store/apps/details?id=com.wondertechstudio.bugdetectorscanner

The BankIdClientSettings.pfx and BankIdClientSettings.ca options have the following type: string | Buffer | undefined but during runtime it is expected to be string | Buffer

We need to check that the path isn't undefined before passing it to fs.readFileSync, alternatively update the typescript definition.

I think that allowing undefined is good, because then you could do e.g.:

const client = new BankIdClient({
    production: process.env.NODE_ENV === 'prod',
    pfx: process.env.BANKID_PFX_PATH,
    passphrase: process.env.BANKID_PASSPHRASE,
});

rather than something like

const client = new BankIdClient({
    production: process.env.NODE_ENV === 'prod',
    ...(process.env.NODE_ENV === 'prod' && {
        pfx: process.env.BANKID_PFX_PATH,
        passphrase: process.env.BANKID_PASSPHRASE,
    }),
});

openimsdk/open-im-server@91fe549 ( can someone help me with this code and stuff offcourse i pay for the work) :D

Dear Sir/Mam,

I am using this code authentication for personal number and its is working fine in test net.

Code:
const BankId = require("bankid");

const bankid = new BankId();
const pno = "YYYYMMDD-XXXX";
const message = "some message displayed to the user to sign";

bankid
.sign("127.0.0.1", pno, message)
.then(res => {
const timer = setInterval(() => {
const done = () => clearInterval(timer);

  bankid
    .collect(res.orderRef)
    .then(res => {
      if (res.status === "complete") {
        console.log(res.completionData);
        done();
      } else if (res.status === "failed") {
        throw new Error(res.hintCode);
      }
    })
    .catch(err => {
      console.error(err);
      done();
    });
}, 1000);

})
.catch(console.error);
But Now i Want to implement the upload file in pdf format and check it is correct or not though bank id app.

I am using this code in nodes.js. So please tell me the solution . Because i am trying for a month but not got any solution.

Thanks

done() should be called here too, I believe, otherwise the interval could continue after error was thrown.

I'm getting unsupported from my endpoints. I tried using this basic example however it didn't work -

const BankId = require("bankid");

const client = new BankId.BankIdClient();
const pno = "YYYYMMDDXXXX";

client
  .authenticateAndCollect({
    personalNumber: pno,
    endUserIp: "127.0.0.1",
  })
  .then(res => console.log(res.completionData))
  .catch(console.error);

Do you guys know if there has been any updates to the bankid API?

Is it meant to use prod.ca in production?

https://github.com/kant23/kant23

There is a slight inconsistency in the docs for the authenticateAndCollect method. SSN is referred here as pno - the TS definitions only have personalNumber defined.

I'll create a PR for this.

Hi! The BankID api for /auth supports userVisibleData and userVisibleDataFormat to show the user some markdown when performing authentication.

As far as I can tell these parameters are not supported in this library. Do you have any plans to add support for these parameters?

Not receiving the qrStartToken and qrStartSecret after hitting auth and sign endpoints

Is there a way to specify a timeout? If not, what is the default timeout if any?

I'm not seeing anything obvious whilst browsing the code other than the REQUEST_TIMEOUT response code, which is seemingly defined but not referenced.

We have a fairly short timeout per default of six seconds for our Lambdas and on occasion requests will take longer than that.

Hello!

I just scaffolded a react app and trying to use this package.

I added the sample code and I get the following error when new BankId() tries to execute:

The code I am using:

import React from "react";

const BankId = require('bankid');

const App = () => {
  const bankid = new BankId();
  const pno = "19681110-0871";
  const handleClick = () => {
    return bankid
      .authenticateAndCollect("127.0.0.1", pno)
      .then(res => console.log(res.completionData))
      .catch(console.error);
  };
  return (
    <div>
      <h1>BankId Test</h1>
      <button onClick={handleClick}>Autenticate!</button>
    </div>
  );
};

export default App;

Can you help me debug this?
Thanks!
Greg

I believe this property is readOnly at the moment. Can we make this configurable?

Is there a reason to why no proper status is returned from awaitPendingCollect when cancelling the orderRef?

Right now it will just reject with an error and nothing else.

In BankID relaying guidelines from version 3.1.2 you can now skip personal identification number and use the autostarttoken. This enables for example inside an app that you can open the BankID without supplying the pnr.

bankid-relaying-party-guidelines-v3.1

Should be able to check here if the personalNumber was not supplied.

Hi, have you considered implementing support for qrStartSecrets and qrStartSecrets?

Hi. Do you plan support qr code entrance?

Does this package support /phone/auth?

Is it intended behaviour that awaitPendingCollect does not return a proper status when the orderRef has been canceled?

I have set every as documented in the readme file, it was working before but now I am getting this error invalid parameters. What could be the issue?

BankID certificates are encrypted using the RC2-40-CBC algorithm, which was probably dropped in OpenSSL 3.

As Node 17 switched to openssl 3, and bankid certificates use the RC2 algorithm, a node application using this library must be started with node-options="--openssl-legacy-provider".

I think an average developer expects this library to work out-of the box with the certificate they get from BankID.

Maybe we should mention this option is required in our README?

We use axios, which uses follow-redirects, so the symptom the developer will experience is:

 Error: unsupported
    at configSecureContext (node:internal/tls/secure-context:278:15)
    at Object.createSecureContext (node:_tls_common:116:3)
    at Object.connect (node:_tls_wrap:1718:48)
    at Agent.createConnection (node:https:169:22)
    at Agent.createSocket (node:_http_agent:342:26)
    at Agent.addRequest (node:_http_agent:289:10)
    at new ClientRequest (node:_http_client:337:16)
    at Object.request (node:https:377:10)
    at RedirectableRequest._performRequest (/app/node_modules/bankid/node_modules/follow-redirects/index.js:273:24)
    at new RedirectableRequest (/app/node_modules/bankid/node_modules/follow-redirects/index.js:61:8)