TrustX v2025.12.01
Preview Release Date: 19th November, 2025
Release Date: 01 December, 2025
What's New
- Time-based one time password (TOTP) provides a second-factor authentication method to supplement an initial PIN/password authentication. TOTP has been introduced to the TrustX Identity Store, enabling Identity Store Users to register and authenticate using a shared secret which is known to both the server and the client. For more information, see the TOTP Integration guide.
Improvements
Custom Data Forms have been updated to include new form elements:
- Link - A clickable link element that redirects the user to the link provided as the "Default Value".
- Copy - Copies the text of the "Default Value" to the user's clipboard.
- QR Code - Displays a scannable QR Code based on the provided "QR Content" string value.
The Webhook URL character length has been increased to accept up to 2048 characters.
API Changes
A list of API changes for this release can be found in the Changes 2025.12.01 log.
Bug Fixes
| Key | Description |
|---|---|
| SKY-12974 | Resolved a bug relating to the timeout boundary event error for xFace and xDoc capture activities. Previously, the error was "null" and no timeout event was recorded in the timeline of the Process Instance. These issues have now been resolved. |
| SKY-12784 | Removed additional space in the error message that is returned when a user attempts to create a Cloud Secret with a name that already exists. |
| SKY-12514 | Fixed an issue where it was not possible to go back to the flow when viewing consent forms on iOS devices. A new 'Capture Consent v3 - Sept 2025' activity has been introduced that allows users on iOS devices to return to the flow after a hyperlink from consent form is selected. |
| SKY-11502 | Resolved an issue where setting the 'Report Log' input parameter to FALSE on the Cloud Function activity resulted in an unexpected Failed Sync Rule error event. |
Known Issues
| Key | Description | Impact |
|---|---|---|
| SKY-13035 | When naming a TOTP policy in the Backoffice application, there are validation inconsistencies when entering a name that includes the underscore character. The Backoffice application will suggest that this character is supported but an error will be returned if this character is entered as part of the TOTP policy name. | Low |
| SKY-13020 | When capturing a passport using 'Capture xDoc IAD v2.5.0', a 1-2 second delay between the captured frame and the of the capture process can occur. | Low |
| SKY-12860 | When editing an Appkey policy in the Backoffice, if the 'Store Audit' is set to "Never" and then updated to "Failed only" or "Always," the default audit duration of 30 days is not populated as expected. | Low |