You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
docs: finalize release-readiness cleanup and consistency fixes
Apply low-risk documentation polish for production readiness by fixing legacy references, certificate guidance links, homepage messaging, and sidebar consistency while removing orphaned pages.
Copy file name to clipboardExpand all lines: docs/oidc-integration-guide/introduction.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -46,7 +46,7 @@ Mobile ID utilizes the **Authorization Code Grant Type** to obtain an access tok
46
46
47
47
## Refresh Token
48
48
49
-
Because Access Tokens are always short-lived (see [Section Tokens](/oidc-integration-guide/getting-started#tokens)), a Relying Party may want to refresh the Access Token using their long-lived Refresh Token. To refresh an Access Token, the Client must always authenticate at the Token Endpoint. The Relying Party should always validate the Refresh Response.
49
+
Because Access Tokens are always short-lived (see [Tokens](/oidc-integration-guide/getting-started#tokens)), a Relying Party may want to refresh the Access Token using their long-lived Refresh Token. To refresh an Access Token, the Client must always authenticate at the Token Endpoint. The Relying Party should always validate the Refresh Response.
20. <spanid="17"></span> In mobile telephony GSM 03.38 is the standard character set used in short message service. [↩](#a17)
52
-
:::
53
47
54
48
### Signature Response
55
49
@@ -72,7 +66,7 @@ The key validation aspects are as follows:
72
66
- The client must be capable of validating both RSA and ECDSA signatures.
73
67
74
68
4.**(Optional) Validate the Mobile ID Serial Number**
75
-
- For the highest level of assurance and a fully strong two-factor authentication process, validate the Mobile ID serial number as described in **Section Mobile ID Serial Number Validation**.
69
+
- For the highest level of assurance and a fully strong two-factor authentication process, validate the Mobile ID serial number as described in **[Serial Number Validation](/rest-api-guide/best-practices#serial-number-validation)**.
76
70
77
71
5.**Implement Proper Fault and Status Handling**
78
72
- Handle all status and fault codes using structured exception handling logic to ensure stable, predictable behavior of the client application.
@@ -94,7 +88,7 @@ If both signature requests target the SIM-based authentication method, and the f
94
88
95
89
-**Fault Code:**`406 / PB_SIGNATURE_PROCESS`
96
90
-**Description:** The subscriber already has an active signature operation in process.
97
-
- See **Section 6** for detailed fault code definitions.
91
+
- See **[Status and Fault Codes](/rest-api-guide/status-fault-codes)** for detailed fault code definitions.
98
92
99
93
##### App Method Concurrency
100
94
If both requests target the Mobile ID App-based authentication method, the behavior is different:
@@ -103,7 +97,7 @@ If both requests target the Mobile ID App-based authentication method, the behav
103
97
- The second signature request is then displayed on the mobile device via the Mobile ID App.
104
98
105
99
-**Fault Code (cancellation of first transaction):**`401 / USER_CANCEL`
106
-
- See **Section 6** for further information.
100
+
- See **[Status and Fault Codes](/rest-api-guide/status-fault-codes)** for further information.
Copy file name to clipboardExpand all lines: docs/rest-api-guide/root-ca-certs.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -28,14 +28,14 @@ Usually, a client's TrustStore contains the Root Certificate only, the so-called
28
28
The Mobile ID End Entity Certificate is either based on the Root Certificate `Swisscom Root CA 4` or on the older Root Certificate `Swisscom Root CA 2`.
29
29
30
30
You can download the "Swisscom Root CA 4" certificate from the Swisscom Digital Certificate Service site:
Copy file name to clipboardExpand all lines: docs/rest-api-guide/status-fault-codes.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -10,7 +10,7 @@
10
10
| 501 | REVOKED_CERTIFICATE | The Mobile ID user's x509 certificate has been revoked. The user must re-activate the account on the Mobile ID self-care portal. | Signature, Status Query |
11
11
| 502 | VALID_SIGNATURE | The MSS Signature transaction was successful. | Signature, Status Query |
12
12
| 503 | INVALID_SIGNATURE | The MSS Signature transaction failed due to invalid signature data. The user may try to re-activate the account on the Mobile ID self-care portal. It may be required to replace the SIM card. | Signature, Status Query |
13
-
| 504 |OUSTANDING_TRANSACTION| The MSS Signature transaction is outstanding. The AP must try again later. | Status Query |
13
+
| 504 |OUTSTANDING_TRANSACTION| The MSS Signature transaction is outstanding. The AP must try again later. | Status Query |
14
14
15
15
### Fault Codes (Error)
16
16
@@ -39,7 +39,7 @@
39
39
40
40
Specific MSISDNs are available to test different type of response status and fault codes. By placing a request to one of this number the related status or fault code will be raised. The following MSISDN structure is used for testing fault codes, which might help a developer to test the error handling of their Mobile ID client.
41
41
42
-
-`+41000092<faultcode>` - Use one of the 3-digit fault sub-code values listed in section 6.1.
42
+
-`+41000092<faultcode>` - Use one of the 3-digit fault sub-code values listed in the [Fault Codes](#fault-codes-error) table above.
43
43
44
44
On the other hand, a successful Mobile ID signature response can be tested by using one of the two MSISDNs listed below, which might help with CI/CD pipelines that include automated regression testing with Mobile ID authentications. However, your account will require specific permissions to be able to use the test-MSISDNs for successful Mobile ID responses. Please ask your Swisscom contact if you need this permission.
0 commit comments