You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ws.apache.org by co...@apache.org on 2014/02/03 11:47:36 UTC

svn commit: r1563827 - in /webservices/wss4j/trunk: ChangeLog.txt README.txt

Author: coheigea
Date: Mon Feb  3 10:47:36 2014
New Revision: 1563827

URL: http://svn.apache.org/r1563827
Log:
Updating README etc.

Modified:
    webservices/wss4j/trunk/ChangeLog.txt
    webservices/wss4j/trunk/README.txt

Modified: webservices/wss4j/trunk/ChangeLog.txt
URL: http://svn.apache.org/viewvc/webservices/wss4j/trunk/ChangeLog.txt?rev=1563827&r1=1563826&r2=1563827&view=diff
==============================================================================
--- webservices/wss4j/trunk/ChangeLog.txt (original)
+++ webservices/wss4j/trunk/ChangeLog.txt Mon Feb  3 10:47:36 2014
@@ -5,6 +5,51 @@ for a given release.  
 Portions of this report were generated using the ReleaseNotes facility
 in Jira.
 
+
+Release 1.6.14
+=============
+
+Bug
+
+    [WSS-488] - Regression in parsing SecurityTokenReferences inside of a SAML Signature KeyInfo
+
+Release 1.6.13
+=============
+
+Improvement
+
+    [WSS-428] - It should be possible to use the useReqSigCert even when the certificate is not sent in the request
+    [WSS-477] - Support the ability to create SAML2 Assertions with OneTimeUse + ProxyRestriction Conditions
+    [WSS-478] - Support the ability to cache SAML2 Assertions with "OneTimeUse" Conditions
+    [WSS-483] - wsse:Reference without ValueType
+
+Release 1.6.12
+=============
+
+Bug
+
+    [WSS-418] - Cannot configure SAML properties in WSS4JOutInterceptor without having to add that config file in the classpath
+    [WSS-473] - BST signature element
+    [WSS-474] - Missing the 'EncodingType' attribute in element built by STRTransformUtil#createBSTX509
+    [WSS-475] - Issue with multiple processing of ReferenceList in EncryptedKey element
+
+Improvement
+
+    [WSS-465] - Possible information leak: incremental IDs
+    [WSS-467] - Support creating SAML 2.0 Tokens with the AuthnStatement SessionNotOnOrAfter attribute.
+    [WSS-476] - Add the ability to configure the Signature Canonicalization Algorithm via WSHandler
+
+Release 1.6.11
+=============
+
+Improvement
+
+    [WSS-441] - Allow the date/time in the security headers to be spoofed
+
+Task
+
+    [WSS-434] - Add ValueType attribute to a Signature/Encryption Reference to a DerivedKeyToken
+
 Release 1.6.10
 =============
 

Modified: webservices/wss4j/trunk/README.txt
URL: http://svn.apache.org/viewvc/webservices/wss4j/trunk/README.txt?rev=1563827&r1=1563826&r2=1563827&view=diff
==============================================================================
--- webservices/wss4j/trunk/README.txt (original)
+++ webservices/wss4j/trunk/README.txt Mon Feb  3 10:47:36 2014
@@ -10,6 +10,8 @@ provides an implementation of the follow
     Username Token Profile 1.1
     X.509 Certificate Token Profile 1.1
     SAML Token Profile 1.1
+    Kerberos Token Profile 1.1
+    SOAP with Attachments (SWA) Profile 1.1
     Basic Security Profile 1.1
 
 Apache WSS4J, Apache, and the Apache feather logo are trademarks of The Apache