Roadmap 2026

P1

Java 21 Migration: Upgrade all eSignet repositories from Java 11 to Java 21 to improve performance, security, and long-term maintainability.

TBA

🔵 Planned

P1

eSignet Performance Improvements (v1.7.x with MOSIP ID): Optimise eSignet service performance and stability when integrated with MOSIP ID for high-volume identity transactions.

TBA

🔵 Planned

P1

UserInfo as Encrypted JWE: Support returning UserInfo as encrypted JWE, passing signed JWTs securely to relying parties.

TBA

🔵 Planned

P1

Signup Form Enhancements – Multiple Input Types: Enhance Signup forms to support diverse input types for better usability and extensibility.

TBA

🔵 Planned

P1

Face Authentication with eSignet: Introduce face authentication as a high-assurance, on-the-go authentication factor in eSignet.

TBA

🔵 Planned

P1

Signup Portal Enhancements for Flexible eKYC: Streamline Signup and eKYC flows to integrate with any authentication server or identity system.

TBA

🔵 Planned

P1

Single Sign-On (SSO) / Super App Support: Enable SSO capabilities to support super apps and seamless cross-application login experiences.

TBA

🔵 Planned

P1

CIBA Support: Add Client-Initiated Backchannel Authentication (CIBA) support for secure, decoupled authentication flows.

TBA

🔵 Planned

P1

MFA Support – Relying Party: Enable relying parties to define and enforce multi-factor authentication by combining 2 or more authentication factors.

TBA

🔵 Planned

P1

FAPI 2.0 Compatible RP Backend Library - Provide a reference backend library to help relying parties integrate with eSignet in a FAPI 2.0-compliant manner.

TBA

🔵 Planned

P2

Timeout Management in Signup eKYC Flow: Improve timeout handling and recovery mechanisms in Signup eKYC workflows.

TBA

🔵 Planned

P2

Signup Performance Benchmarking with Mock Verifier: Benchmark Signup performance using a mock eKYC verifier with MOSIP ID repository.

TBA

🔵 Planned

P2

Performance Optimization of Java 21 Codebase: Further tune and optimize eSignet performance after Java 21 migration.

TBA

🔵 Planned

P2

MFA Support – User Level: Allow users to manage and use multiple authentication factors during login.

TBA

🔵 Planned

P2

eSignet General Availability (GA) – LTS Release: Deliver a stable, long-term support (LTS) release of eSignet for production deployments.

TBA

🔵 Planned

P3

Passkey Authentication Support: Enable passkeys for passwordless, phishing-resistant authentication.

TBA

2027

P3

OpenG2P Integration (SPAR Accounts): Support fetching user benefit or payment accounts from OpenG2P via SPAR by enabling token exchange flows to issue pairwise subject identifiers across services.

TBA

2027

P3

QR Code Standardisation: Standardise QR-based authentication and login flows across implementations.

TBA

2027

P3

Signup service - Expired Claim Detection & Re-Verification: Detect expired verified claims and automatically trigger re-eKYC workflows.

TBA

2027

P3

Consent Handling for Child and Deceased Users: Support delegated and special-case consent management scenarios

. TBA

2027

P3

External Consent Provider Integration: Enable consent to be obtained and validated via external consent systems.

TBA

2027

P3

eSignet as an eKYC Verifier: Allow eSignet itself to act as a reusable eKYC verification service. Support identity verification via web and mobile wallets using OIDC providers.

TBA

2027

P3

Identity Brokering / Federation: Enable federation and brokering across multiple identity providers.

TBA

2027

P3

Multiple Identity Plugin Support: Support concurrent integration with multiple identity systems via plugins.

TBA

2027

P4

Digital Signature Support via eSignet: Enable digital signing services backed by verified identity.

TBA

2027