Agenda

Antitrust Policy

• Focus on Spring 25 release preparation

Minutes

SIM swap

Release Spring 25

• Code has been updated (yaml & feature)

• Thanks to @Fernando Prado Cabrillo the https://github.com/camaraproject/SimSwap/pull/183 is ready for review

sim swap - version 2.0.0-rc1

sim_swap.yaml:

• Change error structure definition to normalize error & status

• Update error code to introduce 429

• Remove 5xx errors

• Change in 422 code (MISSING_IDENTIFIER & UNNECESSARY_IDENTIFIER)

• Add management of monitoredPeriod in sim swap for retrieve-date operation

• Add 3-legged token examples

• Improve documentation part

sim_swap-retrieveDate.feature:

• update test case scenario for 422

• Add optional test case for 401 AUTHENTICATION_REQUIRED

sim_swap-check.feature:

• update test case scenario for 422

• Add optional test case for 401 AUTHENTICATION_REQUIRED

sim swap subscriptions - version 0.2.0-rc1

• sim_swap-subscriptions.yaml:

  • Change error structure definition to normalize error & status

  • Update error code to introduce 429 & 422 - removed 5xx, 410 and 415 error

  • Follow principle of data minimization by removing sinkCredential in POST & GET response

  • Adapt request for 3-legs usage featuring identification of the phoneNumber

  • Improve documentation part

  • Add 3-legs examples

  sim_swap-subscriptions.feature:

  • Align test scenario with commonalities 0.5 improvements

New issues

• #181 Notification subscriptions reading logic → To be considered.

• #166 - What error to return when SIM Swap info is technically not available for a particular phone number - To be check with @Huub Appelboom

Number Verification

Release Spring 25

• Error schema updated with enums

• Removed 500, 503 & 504 error

• To be done - Remove 403 INVALID_TOKEN_CONTEXT → Breaking change? I think no.

  • @Ludovic Robert will do the token context.

• Check with the team for release manage assets - Are @Axel Nennker willing to do them?

  • @Fernando Prado Cabrillo will take care.

New issues

• #160 -NOT mandating ‘prompt=none’ in the auth code flow for number verification API → @Axel Nennker will review

OTP Validation

Release Spring 25

• No breaking change for the meta release (v1.1)

• Make phoneNumber optional in send-code (no change for the consumer)

• Align x-correlator definition (no change for the consumer)

• Restructure test cases (no change for the consumer)

• Change error structure as defined in commonalities 0.5.0 (no change for the consumer)

• Remove from the yaml the errors 406, 415, 500, 503 & 504 (no change for the consumer) & Remove test cases for 406 & 415 (no change for the consumer

New issues

• #90 - Consider whether phishing protection is possible → Looking for team feedback

Action items