You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@synapse.apache.org by Nandana Mihindukulasooriya <na...@wso2.com> on 2008/06/12 10:39:49 UTC

[ANN] Apache Rampart 1.4 released

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This is the 1.4 release of Apache Rampart.

Apache Rampart 1.4 is a toolkit that provides implementations of the
WS-Sec* specifications for Apache Axis2 1.4, based on Apache WSS4J 1.5.4
and the Apache AXIOM-DOOM 1.2.7 implementations.

You can download the releases from:
http://ws.apache.org/rampart/download/1.4/download.cgi

There are two main Apache Axis2 modules provided with this release.

* rampart-1.4.mar
	This provides support for WS-Security and WS-SecureConversation features.
* rahas-1.4.mar
~        This module provides the necessary components to enable
SecurityTokenService functionality on a service.

Apache Rampart 1.4 uses a configuration model based on WS-Policy and
WS-Security Policy. It is important to note that the Apache Rampart 1.0
style configuration is also available even though being marked as
deprecated.

Apache Rampart 1.4 can be successfully used with the next Apache
Sandesha2 release targeted towards Apache Axis2 1.4 to configure
WS-SecureConversation + WS-ReliableMessaging scenarios.

The rampart module was successfully tested for interoperability with
other WS-Security implementations.

WS - Sec* specifications supported by Apache Rampart are as follows:

* WS - Security 1.0 / 1.1
* WS - Secure Conversation - February 2005
* WS - Security Policy - 1.1 - July 2005
* WS - Security Policy - 1.2 - EXPERIMENTAL
* WS - Trust - February 2005
* WS - Trust - WS-SX spec - EXPERIMENTAL


New features in Apache Rampart 1.4

* WS Security 1.1
~   - Encrypted headers
~   - Encrypted SHA1 references
* WS Security Policy 1.2 support
* WS Trust
~   - Renew binding
~   - Validation binding
* New configuration options
~   - Ability to plug in Custom policy validators
~   - Ability to define certificate alias different from username for
signature
~   - Ability turn off mili second precision
* Ability to secure SOAP fault
* Increased interoparability with WCF 3.5


Thank you for using Apache Rampart.

Apache Rampart team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFIUODVmA4ts7hLdV8RAjrEAJ4yE/hk3dnSNWzk3bzKeVQ8NO9UdwCffbWF
FXBlzFfWYA8zn5uQ0mL7CrI=
=NA1q
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@synapse.apache.org
For additional commands, e-mail: dev-help@synapse.apache.org