You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ws.apache.org by co...@apache.org on 2014/02/03 11:47:36 UTC
svn commit: r1563827 - in /webservices/wss4j/trunk: ChangeLog.txt README.txt
Author: coheigea
Date: Mon Feb 3 10:47:36 2014
New Revision: 1563827
URL: http://svn.apache.org/r1563827
Log:
Updating README etc.
Modified:
webservices/wss4j/trunk/ChangeLog.txt
webservices/wss4j/trunk/README.txt
Modified: webservices/wss4j/trunk/ChangeLog.txt
URL: http://svn.apache.org/viewvc/webservices/wss4j/trunk/ChangeLog.txt?rev=1563827&r1=1563826&r2=1563827&view=diff
==============================================================================
--- webservices/wss4j/trunk/ChangeLog.txt (original)
+++ webservices/wss4j/trunk/ChangeLog.txt Mon Feb 3 10:47:36 2014
@@ -5,6 +5,51 @@ for a given release.
Portions of this report were generated using the ReleaseNotes facility
in Jira.
+
+Release 1.6.14
+=============
+
+Bug
+
+ [WSS-488] - Regression in parsing SecurityTokenReferences inside of a SAML Signature KeyInfo
+
+Release 1.6.13
+=============
+
+Improvement
+
+ [WSS-428] - It should be possible to use the useReqSigCert even when the certificate is not sent in the request
+ [WSS-477] - Support the ability to create SAML2 Assertions with OneTimeUse + ProxyRestriction Conditions
+ [WSS-478] - Support the ability to cache SAML2 Assertions with "OneTimeUse" Conditions
+ [WSS-483] - wsse:Reference without ValueType
+
+Release 1.6.12
+=============
+
+Bug
+
+ [WSS-418] - Cannot configure SAML properties in WSS4JOutInterceptor without having to add that config file in the classpath
+ [WSS-473] - BST signature element
+ [WSS-474] - Missing the 'EncodingType' attribute in element built by STRTransformUtil#createBSTX509
+ [WSS-475] - Issue with multiple processing of ReferenceList in EncryptedKey element
+
+Improvement
+
+ [WSS-465] - Possible information leak: incremental IDs
+ [WSS-467] - Support creating SAML 2.0 Tokens with the AuthnStatement SessionNotOnOrAfter attribute.
+ [WSS-476] - Add the ability to configure the Signature Canonicalization Algorithm via WSHandler
+
+Release 1.6.11
+=============
+
+Improvement
+
+ [WSS-441] - Allow the date/time in the security headers to be spoofed
+
+Task
+
+ [WSS-434] - Add ValueType attribute to a Signature/Encryption Reference to a DerivedKeyToken
+
Release 1.6.10
=============
Modified: webservices/wss4j/trunk/README.txt
URL: http://svn.apache.org/viewvc/webservices/wss4j/trunk/README.txt?rev=1563827&r1=1563826&r2=1563827&view=diff
==============================================================================
--- webservices/wss4j/trunk/README.txt (original)
+++ webservices/wss4j/trunk/README.txt Mon Feb 3 10:47:36 2014
@@ -10,6 +10,8 @@ provides an implementation of the follow
Username Token Profile 1.1
X.509 Certificate Token Profile 1.1
SAML Token Profile 1.1
+ Kerberos Token Profile 1.1
+ SOAP with Attachments (SWA) Profile 1.1
Basic Security Profile 1.1
Apache WSS4J, Apache, and the Apache feather logo are trademarks of The Apache