You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ws.apache.org by Nandana Mihindukulasooriya <na...@apache.org> on 2008/06/12 10:58:04 UTC

[ANN] Apache Rampart 1.4 released 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is the 1.4 release of Apache Rampart.

Apache Rampart 1.4 is a toolkit that provides implementations of the
WS-Sec* specifications for Apache Axis2 1.4, based on Apache WSS4J 1.5.4
and the Apache AXIOM-DOOM 1.2.7 implementations.

You can download the releases from:
http://ws.apache.org/rampart/download/1.4/download.cgi

There are two main Apache Axis2 modules provided with this release.

* rampart-1.4.mar
	This provides support for WS-Security and WS-SecureConversation features.
* rahas-1.4.mar
~        This module provides the necessary components to enable
SecurityTokenService functionality on a service.

Apache Rampart 1.4 uses a configuration model based on WS-Policy and
WS-Security Policy. It is important to note that the Apache Rampart 1.0
style configuration is also available even though being marked as
deprecated.

Apache Rampart 1.4 can be successfully used with the next Apache
Sandesha2 release targeted towards Apache Axis2 1.4 to configure
WS-SecureConversation + WS-ReliableMessaging scenarios.

The rampart module was successfully tested for interoperability with
other WS-Security implementations.

WS - Sec* specifications supported by Apache Rampart are as follows:

* WS - Security 1.0 / 1.1
* WS - Secure Conversation - February 2005
* WS - Security Policy - 1.1 - July 2005
* WS - Security Policy - 1.2 - EXPERIMENTAL
* WS - Trust - February 2005
* WS - Trust - WS-SX spec - EXPERIMENTAL


New features in Apache Rampart 1.4

* WS Security 1.1
~   - Encrypted headers
~   - Encrypted SHA1 references
* WS Security Policy 1.2 support
* WS Trust
~   - Renew binding
~   - Validation binding
* New configuration options
~   - Ability to plug in Custom policy validators
~   - Ability to define certificate alias different from username for
signature
~   - Ability turn off mili second precision
* Ability to secure SOAP faults
* Increased interoparability with WCF 3.5



Thank you for using Apache Rampart.

Apache Rampart team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIUOUcmA4ts7hLdV8RAkoXAKCQg9ujK/UgK15j12x+zwa/t5H/gwCdE2bH
o/q+VE9crkvFFv2t6YdLQ4E=
=OkIR
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: general-unsubscribe@ws.apache.org
For additional commands, e-mail: general-help@ws.apache.org