All Projects : Rampart (Key: RAMPART)

Project Lead: Ruchith Udayanga Fernando
URL: http://ws.apache.org/rampart/
Description:
WS-Security and Trust implementation for Axis2

Release Notes

Change Log Scope: previous 3 versions | all versions 1.4 ( 12/Jun/08 | Release Notes) Apache Rampart release for Apache Axis2-1.4    RAMPART-226 UNRESOLVED The certificate used for the signature is not trusted    RAMPART-41 UNRESOLVED "IncludeToken/Once" is not handled properly in Rampart    RAMPART-268 UNRESOLVED Client sending a Security Header in Request expects security header in response and errors out    RAMPART-228 UNRESOLVED How to fix: SOAPEnvelope must contain a body element which is either first or second child element of the SOAPEnvelope.    RAMPART-130 UNRESOLVED MTOM with WS-Security    RAMPART-197 UNRESOLVED Rampart handler not processing empty security header with mustUnderstand="1"    RAMPART-229 UNRESOLVED There should be a way to add custom tokens to the security header    RAMPART-136 UNRESOLVED Rampart doesn't support RequiredElements Assertion    RAMPART-181 UNRESOLVED OptimizePartsConfig does not open namespace tag when serializing the assertion    RAMPART-241 UNRESOLVED org.apache.ws.security.WSSecurityException: Cannot encrypt data; nest ed exception is: org.apache.xml.security.encryption.XMLEncryptionException: Illegal key s ize or default parameters Original Exception was java.security.InvalidKeyException    RAMPART-103 FIXED include a note on adding bouncycastle as a security provider in the JRE    RAMPART-161 FIXED java.util.ConcurrentModificationException while a token is associated with a user when sevaral users are using a service    RAMPART-196 INVALID Rampart removes CDATA markup from SOAPBody elements. Reproducible in versions 1.3/1.4/1.4.1    RAMPART-117 FIXED 1.3 not available on download page    RAMPART-132 FIXED Issue with XPath configuration inside RampartUtil    RAMPART-127 FIXED Possible Security Hole    RAMPART-84 FIXED "SupportingTokens" Token Inop for Asymetric Binding (Sign before Encrypt)    RAMPART-114 FIXED "Unexpected signature" exception thrown when using Signed/SupportingTokens Assertion    RAMPART-122 FIXED /sp:EncryptedParts/sp:Header needs qualified attribute names    RAMPART-124 FIXED /sp:SignedParts/sp:Header selects no elements if the Name attribute is unspecified    RAMPART-134 FIXED Add WS - Security Policy 1.2 support to Rampart    RAMPART-87 FIXED Add renewal and validation support for issued token    RAMPART-137 FIXED Add tests for encrypted supporting token scenarios    RAMPART-135 FIXED Allow custom implementation of PolicyBasedResultsValidator using callback handler mechanism    RAMPART-94 FIXED Change rampart implementation to use same encrypted key in both request and response messages    RAMPART-138 FIXED Created response of SymmetricBindingBuilder WITHOUT timestamp is incorrect    RAMPART-106 FIXED Encrypt the Username Token when it is used as a supporting token    RAMPART-125 FIXED Encryption of SOAP Headers broken    RAMPART-113 FIXED Enforce transport level security when Transport binding is used with Https Token    RAMPART-109 FIXED Error in placement of reference list in No-Timestamp scenarios    RAMPART-165 FIXED Exception in Rampart Processing causes NPE    RAMPART-149 FIXED Improvements to the documentation    RAMPART-115 FIXED Incrorrect reference URI in the soap response in Secure Conversation Scenarios    RAMPART-141 FIXED Issue of Rampart not supporting X509PKIPathv1 token    RAMPART-89 FIXED License files missing in distribution    RAMPART-162 FIXED NullPointerException thrown when a non-existing algorythm suite is used in a policy file when invoking a secured service    RAMPART-102 FIXED Policy Validation Error    RAMPART-108 FIXED Policy Validator doesn't check the transport when Transport binding is used with HttpsToken    RAMPART-143 FIXED Policy with 'Layout' 'Lax' having no subelements leads to a NullPointerException in PolicyEngine    RAMPART-140 FIXED Processing of response fails if a security policy is set    RAMPART-104 FIXED Rampart generates empty reference lists    RAMPART-107 FIXED Rampart ignores the MTOM assertion in the bootstrap policy in secure conversation    RAMPART-90 FIXED Rampart must respond using the applicable WS-Policy even when returning a fault    RAMPART-101 FIXED Rampart uses xmlsec-1.4.0    RAMPART-148 FIXED Release notes are not copied to source distribution    RAMPART-167 FIXED Remove bouncycastle from the distribution and add a note    RAMPART-139 FIXED SignatureToken doesn't work for Symetricbinding    RAMPART-160 FIXED Source files are also copied in to Rampart jars    RAMPART-95 FIXED Support Encrypted Header    RAMPART-133 FIXED Supporting tokens are not added to the soap header    RAMPART-110 FIXED Symmetric binding scenario: "Cannot find Reference in Manifest" Exception is thrown    RAMPART-86 FIXED Test the SymmetricBinding implementation    RAMPART-146 FIXED The exact elements that are equired to be encrypted are not validated    RAMPART-105 FIXED Update RampartTest to include test scenarios for RAMPART-99, RAMPART-102 and RAMPART-104    RAMPART-163 FIXED Update the WS wiki with Rampart information    RAMPART-129 FIXED Validation of supporting tokens according to a service's policy    RAMPART-168 FIXED When SecureConversationTokens are used Rampart always try to use the attached reference    RAMPART-145 FIXED When we use an issued token for sig/encrypt we must use the attached reference or unattached reference as specified by policy    RAMPART-166 FIXED Wrong SoapFault code accessing a Secure endpoint without security    RAMPART-99 FIXED add userCertAlias parameter to Rampart Configuration    RAMPART-123 FIXED client stub are not given the namespace declaration for <sp:EncryptedElements>    RAMPART-100 INVALID Missing encrypted key token in response when Asymmetric Binding is used    RAMPART-92 FIXED Error in checking generated encrypted parts with the policy    RAMPART-147 FIXED Header parts included in EncryptedParts are not processed by Rampart    RAMPART-131 FIXED Rampart security header problem    RAMPART-93 FIXED ValueType is not set correctly in the Signature when a encrypted key is used to sign    RAMPART-91 FIXED Wrong KeyIdentifierType in WSSecSignature and WSSecEncryptedKey    RAMPART-88 INVALID Policy sample "sample-tomcat" incorrectly adds client.jks to Client's truststore    RAMPART-182 FIXED AlgorithmSuiteBuilder is not able to deserialize the algorithm suite in case of a normalized policy.    RAMPART-158 FIXED Create a FAQ    RAMPART-157 FIXED Duplicate namespace declaration in SingedEncryptedElements assertion    RAMPART-169 FIXED HttpsToken serializer does not support ws-securitypolicy 1.2    RAMPART-151 FIXED Rahas docs not being built    RAMPART-152 FIXED Timestamp Precision In Milliseconds Configuration    RAMPART-120 FIXED sources unavailable in maven repository    RAMPART-153 FIXED Incorrect links given in source checkout page    RAMPART-85 FIXED Uncommented and fixed AsymmetricBindingBuilderTest    RAMPART-159 FIXED Fix Releases/Versions in Rampart JIRA 1.3 ( 06/Sep/07 | Release Notes) Apache Rampart release for Apache Axis2-1.3    RAMPART-195 UNRESOLVED Maven metadata are invalid in official repo preventing the use of rampart in offline mode    RAMPART-216 UNRESOLVED Wrong SignatureMethod and DigestMethod generated in request in case of algoritm suite having SHA256 hashing algorithm (example: Basic256Sha256)    RAMPART-17 FIXED Create Apache Rampart website    RAMPART-20 FIXED Improve logging    RAMPART-53 FIXED rampart causes problems with hierarchies    RAMPART-196 INVALID Rampart removes CDATA markup from SOAPBody elements. Reproducible in versions 1.3/1.4/1.4.1    RAMPART-62 FIXED Build failure on Mac OS    RAMPART-51 FIXED Rampart developer guide    RAMPART-48 FIXED RampartMessageData class needs tightening    RAMPART-49 FIXED RampartPolicyBuilder logs to console/System.out    RAMPART-27 FIXED The user in the configuration for UsernameToken and Signature should be different    RAMPART-42 FIXED TransportBinding does not encrypt the message payload    RAMPART-52 FIXED UsernameToken Builder Bug.    RAMPART-58 FIXED problems engaging rampart per operation    RAMPART-76 INVALID Rampart 1.3.mar throws error with Axis2 1.3    RAMPART-57 FIXED Move generated code into target directory in rampart-integration test    RAMPART-32 FIXED Processing of <Issuer> and <RequestSecurityTokenTemplate> in class org.apache.ws.secpolicy.builders.IssuedTokenBuilder is wrong.    RAMPART-79 INVALID setAction in Options does not create a non-null "Action" element in the SOAP Header    RAMPART-54 FIXED Reviewed the Developer Guide 1.2 ( 02/Jun/07 | Release Notes) Apache Rampart release for Apache Axis2-1.2    RAMPART-12 FIXED ClassCastException in fault parsing    RAMPART-37 FIXED SymmetricBinding is broken    RAMPART-36 FIXED Using the "SupportingTokens" assertion throws exception    RAMPART-34 INVALID SignedEncryptedSupportingTokens assertion does not work    RAMPART-35 INVALID SignedSupportingTokens does not sign the UsernameToken    RAMPART-38 FIXED AsymmetricBinding does not support UsernameToken as a supporting token    RAMPART-43 FIXED When IncludeTimestamp is commented in Sample03 service throws a Nullpointer exception.    RAMPART-40 FIXED implementation of the Xpath support    RAMPART-28 INVALID Cannot add parts of the header for encryption

Reports

Preset Filters

Project Summary

	Open	93	35%
	In Progress	1
	Reopened	1
	Resolved	153	57%
	Closed	19	7%

Open Issues

	Critical	4	4%
	Major	73	77%
	Minor	18	19%

By Assignee

Dimuthu Leelarathne	2	2%
Nandana Mihindukulasooriya	25	26%
Ruchith Udayanga Fernando	46	48%
Unassigned	22	23%