You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Peter Major (Jira)" <ji...@apache.org> on 2020/01/28 10:41:00 UTC
[jira] [Created] (CXF-8204) Dependency convergence issues with
jaxws-api
Peter Major created CXF-8204:
--------------------------------
Summary: Dependency convergence issues with jaxws-api
Key: CXF-8204
URL: https://issues.apache.org/jira/browse/CXF-8204
Project: CXF
Issue Type: Bug
Affects Versions: 3.3.5
Reporter: Peter Major
When trying to use CXF 3.3.5 the Maven enforcer plugin reports the following dependency convergence issue:
{noformat}
+-org.apache.cxf:cxf-rt-ws-security:3.3.5
+-org.apache.cxf:cxf-rt-security-saml:3.3.5
+-javax.xml.ws:jaxws-api:2.3.1
and
+-org.apache.cxf:cxf-rt-ws-security:3.3.5
+-org.apache.wss4j:wss4j-ws-security-dom:2.2.4
+-org.apache.wss4j:wss4j-ws-security-common:2.2.4
+-javax.xml.ws:jaxws-api:2.2.9
{noformat}
It appears that CXF brings in jaxws-api 2.3.1, but the 2.2.4 version of wss4j brings in 2.2.9. Looks like the upcoming 2.2.5 wss4j version will [update|https://github.com/apache/ws-wss4j/blob/2_2_x-fixes/pom.xml#L427] jaxws-api, but it hasn't been released yet.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)