Google Git
Sign in
apache / ws-wss4j / refs/heads/master / . / src / site / xdoc / index.xml
blob: 27ef2ad0d121fe63f62228ae179675e0f1b9801e [file] [log] [blame]
<?xml version="1.0" encoding="ISO-8859-1"?>
<!--
Licensed to the Apache Software Foundation (ASF) under one or more
contributor license agreements. See the NOTICE file distributed with
this work for additional information regarding copyright ownership.
The ASF licenses this file to You under the Apache License, Version 2.0
(the "License"); you may not use this file except in compliance with
the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->
<document>
<body>
<section name="Apache WSS4J&#8482; - Web Services Security for Java">
<subsection name="The Project">
<p>
The <b>Apache WSS4J&#8482;</b> project provides a Java implementation of the
primary security standards for Web Services, namely the OASIS Web Services
Security (WS-Security) specifications from the
<a href="http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss">OASIS Web Services Security TC</a>. WSS4J provides an implementation of the following
WS-Security standards:
</p>
<ul>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SOAPMessageSecurity.pdf">
SOAP Message Security 1.1</a>
</li>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-UsernameTokenProfile.pdf">Username
Token Profile 1.1</a>
</li>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-x509TokenProfile.pdf">X.509
Certificate Token Profile 1.1</a>
</li>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SAMLTokenProfile.pdf">SAML Token
Profile 1.1</a>
</li>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-KerberosTokenProfile.pdf">Kerberos Token
Profile 1.1</a>
</li>
<li>
<a href="http://docs.oasis-open.org/wss/v1.1/wss-v1.1-spec-os-SwAProfile.pdf">SOAP Messages with Attachments Profile 1.1</a>
</li>
<li>
<a href="http://www.ws-i.org/Profiles/BasicSecurityProfile-1.1.html">Basic Security Profile 1.1</a>
</li>
</ul>
</subsection>
<subsection name="News">
<ul>
<li>
<p><b>February 2023</b> -
The Apache WSS4J team are pleased to announce the release of version 3.0.3. It contains an update to use XML Security for Java 3.0.4 and functionality to support key agreement using ECDH-ES.
</p>
</li>
<li>
<p><b>November 2023</b> -
The Apache WSS4J team are pleased to announce the release of versions 3.0.2 and 2.4.3. These releases contain an upgrade to XML Security to pick up a recent CVE fix.
</p>
</li>
<li>
<p><b>July 2023</b> -
The Apache WSS4J team are pleased to announce the release of versions 3.0.1, 2.4.2 and 2.3.4. These releases contain a fix for a bug with STR Transform and contain dependency updates.
</p>
</li>
<li>
<p><b>October 2022</b> -
The Apache WSS4J team are pleased to announce the release of version 3.0.0.
This is a major new release of WSS4J. Significant changes:
</p>
<ul>
<li>Moved from javax to jakarta namespace</li>
<li>OpenSAML 4.x upgrade</li>
<li>Santuario 3.0.x upgrade</li>
</ul>
<p>
Please see the <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&amp;version=12350043">
3.0.0 release notes</a> for more information.
</p>
</li>
<li>
<p><b>February 2022</b> -
The Apache WSS4J team are pleased to announce the release of version 2.4.1. It
fixes an issue with the timestamp in the WSS4J jars being invalid.
</p>
</li>
<li>
<p><b>November 2021</b> -
The Apache WSS4J team are pleased to announce the release of version 2.4.0. This release contains relatively few changes, but picks up a new major version of Apache Santuario - XML Security for Java (2.3.0)
</p>
</li>
<li>
<p><b>September 2021</b> -
The Apache WSS4J team are pleased to announce the release of versions 2.3.3
and 2.2.7. The main changes for these releases are updates to fix CVE issues
in a few dependencies.
</p>
</li>
<li>
<p><b>December 2020</b> -
The Apache WSS4J team are pleased to announce the release of versions 2.3.1
and 2.2.6. Please see the <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&amp;version=12348399">2.3.1 release notes</a> and <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&amp;version=12347804">
2.2.6 release notes</a> for more information.
</p>
</li>
<li>
<p><b>June 2020</b> -
The Apache WSS4J team are pleased to announce the release of version 2.3.0.
This is a major new release of WSS4J. Significant changes:
</p>
<ul>
<li>Private key caching enabled which greatly speeds up private key retrieval for PKCS12 keys</li>
<li>OpenSAML 3.4.x upgrade</li>
<li>Santuario 2.2.x upgrade</li>
<li>EhCache 3.x upgrade</li>
<li>JDK 14 officially supported</li>
</ul>
<p>
Please see the <a href="https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310063&amp;version=12343948">
2.3.0 release notes</a> for more information.
</p>
</li>
</ul>
</subsection>
</section>
</body>
</document>