V1.6.0 Release Notes
Release notes for version 1.6.0 of the CDR Standards.
High Level Standards
|Remove duplicate entries from the Future Dated Obligations table||The future dated obligations included a duplication of Get Product V2 and Get Product Detail V1 obligations. The redundant entries have been removed||Future Dated Obligations|
API End Points
Information Security Profile
|Updated requirements for setting and validating the "audience" claim in Client Authentication for Data Recipients calling Data Holders||Client Authentication has been updated to align to upstream standards. Data Recipients continue to pass the URL of the endpoint being invoked until the end of March. At which time, Data Holders must validate that the audience claim is either the issuer identifier, Token endpoint URL or the URL of the endpoint being invoked.||Client Authentication|