v1.2.1.0
Release Version: v1.2.1.0
Release Type: Major Release
Release Date: 26th December, 2025
Overview
The MOSIP v1.2.1.0 release marks a major platform advancement, delivering a stable and production-ready migration from Java 11 to Java 21. This transition brings significant improvements in performance, security, and long-term maintainability. The release also consolidates all enhancements introduced during the beta cycle and introduces several key updates across security, automation, data handling, and developer tooling.
Additionally, this version includes a Resource Calculator built from extensive performance testing, to help implementers size their MOSIP deployments accurately and efficiently, You can find the Resource Calculator on Server Hardware Requirements page.
Major Areas of Work
Stable Migration to Java 21 - Ensures a reliable upgrade to Java 21 for improved performance, security, and long-term support.
Digital Signature with ECC in Key Manager - Enables secure and efficient ECC-based digital signing within the Key Manager.
Data Segregation Enhancements (Default, Seed, Test) - Strengthens environment separation by organizing data into Default, Seed, and Test categories.
Performance Enhancements & Resource Calculator - Boosts system performance with optimized operations and an improved resource estimation tool.
DSL Improvements & Automation Updates - Enhances DSL capabilities and updates automation workflows for smoother execution.
API Automation Fixes - Resolves issues in API automation to ensure consistent, reliable automated testing.
Functional Bug Fixes - Addresses functional defects to improve stability and user experience.
Security Bug Fixes - Patches security vulnerabilities to enhance platform protection and compliance.
Stories Released
did:web Support in Key Manager
Enabled did:web support in Key Manager to allow VC generation in SD-JWT format.
PDF Generation Module Replacement
Replaces the deprecated kernel-pdfgenerator-itext component with a new, streamlined PDF generation implementation to improve maintainability, licensing compliance, and long-term support.
Data Storage Enablement via Updated Durian APIs
Updates the existing Durian APIs to enable seamless integration with Inji Web, allowing efficient and secure data storage and retrieval within the platform.
ECC Key Algorithm Support
Support ECC algorithm for Signing and Verification in KeyManager Service.
Post-Migration Security Testing for Java 21
Conducts comprehensive security testing on the Platform module following its migration to Java 21, ensuring that the upgrade maintains compliance, mitigates vulnerabilities, and strengthens overall system security.
Image Color Space HEX Value Compatibility Support
Enables support for both ISO-compliant Image Color Space values—0x00 (unspecified) and 0x01—in the ISO header to ensure seamless processing across implementations, including compatibility with Mock BioSDK and SBI-based integrations.
PDF Generator Module Replacement
Removes the deprecated kernel-pdfgenerator-itext component and introduces a new PDF generation implementation to improve maintainability, compliance, and long-term platform stability.
Default, Seed, and Test Data Sets for MOSIP Deployment
Provides essential, optional, and test data sets to enable ready-to-use, functional, and testable MOSIP deployments.
Java 21 and Spring Boot 3.2.3 Upgrade
Upgrades the platform to Java 21 and Spring Boot 3.2.3, enhancing performance, security, and compatibility with modern frameworks.
MOSIP Logo updated
Replace the old MOSIP logo with the new logo across all UI pages in all environment builds, starting with Collab.
Bug Fixes
Below are a few key bugs addressed in this release. Please click here to view the complete list of fixes.
ADMIN-SERVICE: Longitude value is assigning to the setLongCode In kernel syncdata service.
Packet Manager : Info cache causing issue while processing the BIOMETRIC_CORRECTION packet.
Incorrect x5c Field in JWT Header – Certificate Passed Instead of Full Trust Chain.
PSUT Token Generation Mismatch: Different PSUT for VID Compared to UIN and Handle.
Unable to upload packets from admin-bulkupload.
Reg client update from child to Adult - is not updating IDRepo (critical).
regclient-We are unable to generate a new UIN packet as the process is stuck at the 'INTERNAL_WORKFLOW_ACTION' loading stage.
Unable to access Reg.Client because of a sync configuration failure.
Regproc: Packets are failing at Biographic verification stage.
Packets with invalid signatures are reprocessed instead of failing.
Regenerate Vid is failing with "Could not generate/regenerate VID as per policy" error.
NFIQ 1.0 fix reliability issues.
Draft extract biometric scenarios with only face ,only finger, only iris and with all together( ie, face,finger and iris) are failing.
Exception is thrown while updating handle field in Update UIN flow.
Add new column to the ca_cert_store.
IDA: Upon marking an exception in any bioSubType, authentication for the entire corresponding bioType is not working.
[Masterdata] Not getting proper error code for get applicant type api with invalid biometricAvailable.
Security testing: Registration processor- header issues.
Unable to Authenticate due to selected Handles.
"Missing Input Parameter - identity/IDSchemaVersion" exception in FINALIZATION stage.
During Demographic Authentication negative value for age is allowed to be authenticated.
Prereg- On the login page, when switching the language to Hindi, Tamil, or Kannada, the alignment is displayed from right to left.
Repositories Released
admin-ui
artifactory-ref-impl
admin-services
audit-manager
biosdk-client
commons
id-authentication
id-repository
otp-manager
packet-manager
demosdk
durian
keymanager
mosip-config
admin-ui
captcha
registration
digital-card-service
khazana
mosip-openid-bridge
mosip-ref-impl
resident-services
websub
mosip-data
k8s-infra
keycloak
mosip-file-server
mosip-helm
mosip-infra
postgres-init
bio-utils
biosdk-client
biosdk-services
converters
demosdk
id-repository
mosip-mock-services
nfiq
pre-registration
pre-registration-ui
Known Issues
Below are a few key bugs marked as known issues for this release. Please click here to view the complete list of fixes.
Pre registration - Backward compatibility not supported
Pre-registration - Failing automation test scenario in qajava21 environment
Admin - Unable to login into Admin UI after we logout
Unable to decommission machine – Error: “Machine cannot be decommissioned as some Registration centers are mapped”
IDA server side issues
Packet Not Rejected Despite Manual Verification Status Set to REJECTED
DSL-Scenario-108 Child Packet Should Be Rejected Only If Parent Packet is Rejected – Not Processed in DSL
OTP is being sent to blocked, deactivated, and locked channels for UIN/VID.
Able to update biometrics of an UIN, with unregistered biometrics
Admin UI: Not getting all machine type in dropdown while creating new machine spec.
Websub issue on sending messages to subscribers on startup
Compatibility Matrix
Dependency Matrix
Key Cloak
v7.1.18
Kafka
Kafka-zookeeper
3.2.1 ( Both components deployed with the same helm chart)
3.8.0
18.3.1
Mock-SMTP
1.0.0
1.0.0
ActiveMQ
2.39.0
0.0.3
Minio
2025.2.28-debian-12-r1
15.0.6
Redis (used only if eSignet exists)
v7.0.5
17.3.14
Postgres
v16
13.1.5
Softhsm (Recommended to use only in sandbox environment)
v2
12.0.1
clamav
v1.2
3.1.0
Learn More
Documents published/revised with the release:
Last updated
Was this helpful?