| <?xml version="1.0" encoding="ISO-8859-1"?> |
| <!-- |
| Licensed to the Apache Software Foundation (ASF) under one or more |
| contributor license agreements. See the NOTICE file distributed with |
| this work for additional information regarding copyright ownership. |
| The ASF licenses this file to You under the Apache License, Version 2.0 |
| (the "License"); you may not use this file except in compliance with |
| the License. You may obtain a copy of the License at |
| |
| http://www.apache.org/licenses/LICENSE-2.0 |
| |
| Unless required by applicable law or agreed to in writing, software |
| distributed under the License is distributed on an "AS IS" BASIS, |
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| See the License for the specific language governing permissions and |
| limitations under the License. |
| --> |
| <document> |
| <body> |
| |
| <section name="Apache WSS4J™ - Web Services Security for Java"> |
| <subsection name="The Project"> |
| <p> |
| The <b>Apache WSS4J™</b> project provides a Java implementation of the |
| primary security standards for Web Services, namely the OASIS Web Services |
| Security (WS-Security) specifications from the |
| <a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss">OASIS Web Services Security TC</a>. WSS4J provides an implementation of the following |
| WS-Security standards: |
| </p> |
| <ul> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SOAPMessageSecurity.pdf"> |
| SOAP Message Security 1.1</a> |
| </li> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-UsernameTokenProfile.pdf">Username |
| Token Profile 1.1</a> |
| </li> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-x509TokenProfile.pdf">X.509 |
| Certificate Token Profile 1.1</a> |
| </li> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SAMLTokenProfile.pdf">SAML Token |
| Profile 1.1</a> |
| </li> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-KerberosTokenProfile.pdf">Kerberos Token |
| Profile 1.1</a> |
| </li> |
| <li> |
| <a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SwAProfile.pdf">SOAP Messages with Attachments Profile 1.1</a> |
| </li> |
| <li> |
| <a href="http://www.ws-i.org/Profiles/BasicSecurityProfile-1.1.html">Basic Security Profile 1.1</a> |
| </li> |
| </ul> |
| </subsection> |
| <subsection name="News"> |
| <ul> |
| <li> |
| <p><b>September 2021</b> - |
| The Apache WSS4J team are pleased to announce the release of versions 2.3.3 |
| and 2.2.7. The main changes for these releases are updates to fix CVE issues |
| in a few dependencies. |
| </p> |
| </li> |
| <li> |
| <p><b>December 2020</b> - |
| The Apache WSS4J team are pleased to announce the release of versions 2.3.1 |
| and 2.2.6. Please see the <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&version=12348399">2.3.1 release notes</a> and <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&version=12347804"> |
| 2.2.6 release notes</a> for more information. |
| </p> |
| </li> |
| <li> |
| <p><b>June 2020</b> - |
| The Apache WSS4J team are pleased to announce the release of version 2.3.0. |
| This is a major new release of WSS4J. Significant changes: |
| </p> |
| <ul> |
| <li>Private key caching enabled which greatly speeds up private key retrieval for PKCS12 keys</li> |
| <li>OpenSAML 3.4.x upgrade</li> |
| <li>Santuario 2.2.x upgrade</li> |
| <li>EhCache 3.x upgrade</li> |
| <li>JDK 14 officially supported</li> |
| </ul> |
| <p> |
| Please see the <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&version=12343948"> |
| 2.3.0 release notes</a> for more information. |
| </p> |
| </li> |
| </ul> |
| </subsection> |
| </section> |
| |
| </body> |
| </document> |