Author: dkulp
Date: Tue May 29 18:56:04 2012
New Revision: 1343916
URL: http://svn.apache.org/viewvc?rev=1343916&view=rev
Log:
Update release notes
Modified:
cxf/branches/2.5.x-fixes/distribution/src/main/release/release_notes.txt
Modified:
cxf/branches/2.5.x-fixes/distribution/src/main/release/release_notes.txt
URL:
http://svn.apache.org/viewvc/cxf/branches/2.5.x-fixes/distribution/src/main/release/release_notes.txt?rev=1343916&r1=1343915&r2=1343916&view=diff
==============================================================================
--- cxf/branches/2.5.x-fixes/distribution/src/main/release/release_notes.txt
(original)
+++ cxf/branches/2.5.x-fixes/distribution/src/main/release/release_notes.txt
Tue May 29 18:56:04 2012
@@ -1,4 +1,4 @@
-Apache CXF 2.5.3 Release Notes
+Apache CXF 2.5.4 Release Notes
1. Overview
@@ -21,7 +21,7 @@ for further information and requirements
-2.5.3 fixes over 110 JIRA issues reported by users and the community.
+2.5.4 fixes over 70 JIRA issues reported by users and the community.
2. Installation Prerequisites
@@ -64,130 +64,85 @@ for caveats when upgrading from CXF 2.4.
7. Specific issues, features, and improvements fixed in this version
** Bug
- * [CXF-3809] - Tests failing with: The signature or decryption was invalid
- * [CXF-3916] - partial response problem with SOAP 1.1 use of WS-Addressing
- * [CXF-3993] - WS-RM's blueprint configuration fails to parse RMAssertion
entries
- * [CXF-4006] - Possible classloader leak due to ThreadLocal
- * [CXF-4023] - invalid ProtocolVariant causes NullPointerException in
RMSoapInterceptor
- * [CXF-4034] - Allow SecurityConstants.SIGNATURE_CRYPTO and ENCRYPT_CRYPTO
to be used on processing side
- * [CXF-4051] - Custom OAuth scopes are not supported
- * [CXF-4052] - Crypto cache issues and the PolicyBasedWSS4JInInterceptor
used as a singleton
- * [CXF-4055] - Parameter Handler not Invoked if Constructor or Static
Methods Succeed
- * [CXF-4056] - Faults on server are echoing headers back to the client
- * [CXF-4057] - Echoed Addressing headers can cause client hangs and
timeouts
- * [CXF-4060] - oneway camel scenario is accessing the user principal too
late, resulting in IllegalStateException
- * [CXF-4061] - Some of the characters in the URI path component are
url-encoded
- * [CXF-4066] - AbstractTransportFactory registers itself as extension,
before being fully initialized
- * [CXF-4067] - JAX-RS WebClient proxy sometimes fails to set Content-Type
from @Consumes
- * [CXF-4068] - cxf-codegen-plugin : wsdlLocation option is not used when
set in defaultOptions
- * [CXF-4072] - NPE in PhaseInterceptorChain
- * [CXF-4078] - SecurityContextToken Identifier value not an absolute URI
- * [CXF-4086] - Providers.getContextResolvers is only partially implemented
- * [CXF-4088] - Class.getGenericSuperclass also needs to be checked by
ProviderFactory
- * [CXF-4094] - Refreshing Spring application context leads to NPE
- * [CXF-4095] - schemaLocation attribute for swaRef namespace
"http://ws-i.org/profiles/basic/1.1/xsd"; is wrongly removed
- * [CXF-4099] - SignedParts, EncryptedParts policy assertions are silently
ignored on the client side if specified alone
- * [CXF-4103] - NPE in
org.apache.cxf.frontend.WSDLGetUtils.findSchemaLocation()
- * [CXF-4105] - Slf4jLogger doesn't mapping the level as the
SLF4JBridgeHandler does
- * [CXF-4106] - Attachments get lost when WSDL claims HTTP transport but
config uses JMS
- * [CXF-4109] - UriInfo getHost caches first request's host and always
returns that on subsequent calls
- * [CXF-4110] - Java first @Policy annotations aren't working
- * [CXF-4113] - Header fields duplication in generated wsdl file when using
aegis databinding
- * [CXF-4115] - The operation property of the MessageContext may return
wrong value if erroneous request is sent
- * [CXF-4117] - Argument type mismatch when using Implicit Headers and
@RequestWrapper with Service from WSDL
- * [CXF-4121] - Default WebApplicationException mapper dramatically
increases the response time
- * [CXF-4122] - CXFRequestData should get chance to setEnableRevocation
from message context When use WS-SecurityPolicy
- * [CXF-4123] - Nullpointer exception in Servlet Controller when running in
OSGi and changing the http port at runtime
- * [CXF-4124] - DynamicClientFactory has issues with schemas embedding in
file based WSDL's
- * [CXF-4125] - StackOverflowError when requesting WADL
- * [CXF-4127] - CXFServlet should be reinitialized on ContextRefreshedEvent
- * [CXF-4128] - Code Gen plugin fails silently when generated classes have
name collisions
- * [CXF-4129] - DynamicClientFactory no longer works with JDK provided JAXB
impl
- * [CXF-4130] - Server using Provider implementation writes contents of
SOAP body in SOAP header
- * [CXF-4131] - org.apache.cxf.transport.http.finalizeConfig() duplicate
property listener and possible memory leak
- * [CXF-4133] - CachedOutputStream lost charsetName param
- * [CXF-4136] - Codegen plugin requires WSDL artifact to be listed in
dependency tree
- * [CXF-4140] - WS-BrokeredNotification Compliance PublisherReference
- * [CXF-4141] - response_code 500 ignored when set in
JAXRSOutInterceptor.handleWriteException
- * [CXF-4142] - "attachment-directory" property specified on RS endpoint
does not change temp directory
- * [CXF-4147] - Wrong wsdl generated from impl class annotated with
@SOAPBinding(parameterStyle = ParameterStyle.BARE)
- * [CXF-4149] - org.apache.cxf.endpoint.ClientImpl raises
- * [CXF-4150] - Transform feature's OutTransformWriter may not correctly
generate namespace declarations
- * [CXF-4153] - FIQL Parsers Beanspector, replaces "is", "set" and "get" in
method names
- * [CXF-4163] - WSDLToJava Error: Thrown by JAXB: 'CodeGroup' is already
defined ... OTA_CommonTypes.xsd
- * [CXF-4164] - Robust-InOnly processing with WS-RM must must delay
updating the sequence until message delivery
- * [CXF-4166] - CXF does not always respect SecurityPolicy TokenInclusion
for the AsymmetricBinding
- * [CXF-4170] - JMX InstrumentationManager's configuration properties may
not be set correctly in standalone mode after upgrading to 2.5.2
- * [CXF-4171] - Static resource resolution not possible with
CXFNonSpringJaxrsServlet
- * [CXF-4172] - Default JAX-RS XML, JSON and Form providers are open to the
hash collision attacks
- * [CXF-4177] - ClientProxyImpl does not order Path parameter values
according to the template order
- * [CXF-4178] - ClientProxyImpl does not support Multipart annotations
- * [CXF-4181] - CXF error when parsing a SOAP 1.2 fault: Invalid QName in
mapping
- * [CXF-4183] - SOAP Fault cause NullPointerException
- * [CXF-4185] - Unable to access services via browser after installation of
war feature in Karaf 2.2.6
- * [CXF-4188] - Robust-InOnly processing with WS-RM to perform AtMostOnce
delivery assurance check
- * [CXF-4192] - WSDLValidator doesn't pass the test for WSI-BP-1.0 R2726
- * [CXF-4195] - http-config conduit doesn't work on the http conduit for
WsdlUrl
- * [CXF-4196] - Java First Use Schema Imports does not work
- * [CXF-4197] - Get the schema validation error when using the simple
frontend configuration with blueprint
- * [CXF-4200] - UriInfoImpl.getPathSegments(decode) does not pass 'decode'
flag to getPath()
- * [CXF-4203] - CXF bundle need to imports the jaas related package
- * [CXF-4220] - After loading XSDs from links in WADL, JAX-RS get all for
all resources fail with 400
- * [CXF-4227] - AttachmentDeserializerTest contains buggy code for reading
an InputStream.
- * [CXF-4231] - Incorrect handling of "If-None-Match" and
"If-Modified-Since" request header combination
- * [CXF-4234] - JAX-RS JAASAuthenticatingFilter leaks SecurityException
- * [CXF-4238] - Spring JAXRSClientFactoryBeanDefinitionParser reports a
wrong factory bean class
+ * [CXF-2450] - WSDL2java uses system encoding when generating java classes
+ * [CXF-2937] - character encoding in cxf-codegen is wrong
+ * [CXF-4002] - Cannot override read-only parameter: classesDirectory in
goal: cxf-codegen:wsdl2java
+ * [CXF-4118] -
org.apache.cxf.tools.wadlto.jaxrs.JAXRSContainerTest.testResourceWithEPR breaks
when run offline
+ * [CXF-4191] - RM broken in synchronous Mode
+ * [CXF-4240] - CXF WSN cannot run offline in Karaf
+ * [CXF-4243] - RequestImpl.selectVariant() using wrong headers
+ * [CXF-4244] - OutTransformWriter's defaultNamespace setting may not
replace all default namespace declarations
+ * [CXF-4245] - JAX-RS databinding support for JiBX
+ * [CXF-4250] - WADL To Java Generator fails to process application level
method elements
+ * [CXF-4254] - NPE in OnlySignEntireHeadersAndBody policy validation when
the STR Transform is used
+ * [CXF-4259] - JAX-RS Set-Cookie handler needs to ignore Expires property
+ * [CXF-4262] - oauth sample in 2.5.3 release does not build without POM
changes
+ * [CXF-4265] - Potential NPE when Soap fault has no role
+ * [CXF-4267] - A NPE in AttatchmentDataSource could be guarded.
+ * [CXF-4268] - WADL 2 Java doesn't respect catalogs
+ * [CXF-4269] - In some cases, the javascript client will not output the ns
declaration for wrapper element of an rpc/lit method
+ * [CXF-4275] - Sample readme file incorrect
+ * [CXF-4277] - STSClient does not use returned KeyInfo size when creating
a secret key
+ * [CXF-4279] - WS-Security ehcache things never shutdown
+ * [CXF-4280] - case insensitive MetadataMap keyset
+ * [CXF-4283] - OAuth 2-leg getAccessToken Error
+ * [CXF-4284] - Fix JAXB-based providers to report 400 for all read-related
exceptions
+ * [CXF-4285] - WADLGenerator ignores header or query parameters when
FormParam parameters are available
+ * [CXF-4288] - SecureAnnotationsInterceptor maps roles only based on
method name
+ * [CXF-4291] - Wadl2java tool executing by cxf-wadl2java-plugin fails if
run without tuning JAVA Garbage Collection
+ * [CXF-4292] - Incorrect code generated with wadl2java tool when use JAXB
binding and XML symple type with restriction.
+ * [CXF-4293] - Some WS-RM scenarios may not run when there is no internet
connection available
+ * [CXF-4294] - Exception Cache ws-security.timestamp.cache.instance
already exists or Cache ws-security.nonce.cache.instance already exists
+ * [CXF-4296] - Setting a namespaceMap on JSONProvider does not affect the
way JAXB generates prefixes
+ * [CXF-4297] - WS-RM destination should update ack-ranges in RMStore
before sending out acks
+ * [CXF-4298] - MTOM-streaming regression: Worked 2.3.1, no longer works
2.6.0.
+ * [CXF-4299] - wsdl2java cannot create code
+ * [CXF-4300] - feature cxf-core does not install on karaf 3 snapshot
+ * [CXF-4303] - WS-RM fails when the GZIP feature is enabled
+ * [CXF-4305] - FIQL only gives nullpointerexception. @Context
SearchContext does not seem to work.
+ * [CXF-4306] - Mixing up FormParam and Multipart annotations cause
exceptions when some parts contain the binary payload
+ * [CXF-4307] - The inbound Cookie header should be parsed using a
semicolon separator by default
+ * [CXF-4312] - JAX-WS clients set executor to a "thread per async request"
version
+ * [CXF-4313] - Hourly GC Caused by Framework - Unable to GC tune
application if using framework.
+ * [CXF-4315] - CXF does not read decoupled destination parameters from a
config file
+ * [CXF-4316] - Support EndorsingSupportingToken SignedElements with the
Transport binding
+ * [CXF-4321] - NPE in MEXInInterceptor
+ * [CXF-4334] - Schema validation does not validate elements in soap header
+ * [CXF-4336] - org.apache.cxf.bus.blueprint.ConfigurerImpl may get
IllegalStateException: Execution container has not been set
+ * [CXF-4342] - NullPointerException in CachedOutputStream
+ * [CXF-4349] - JAXRS frontend should report the actual method request and
response types to providers
** Improvement
- * [CXF-1636] - Have WSS4J in/out interceptors require nonces and
timestamps when using UsernameTokens?
- * [CXF-4030] - externalize configuration of
org.apache.cxf.io.CachedOutputStream.Threshold
- * [CXF-4049] - Check external CryptoProvider from message context
properties in Wss4jInInterceptor
- * [CXF-4059] - OAuth 2-leg flows can not be supported properly
- * [CXF-4062] - Enabling custom claim parser
- * [CXF-4069] - JAXB DataTypeAdapter should be in its own project
- * [CXF-4085] - introduce
org.apache.cxf.jaxws.checkPublishEndpointPermissionWithSecurityManager for
EndpointImpl so that get chance to bypass SecurityManager Check in some cases
- * [CXF-4092] - Confusing error message "No initiator token id" in
AssymetricBindingHandler
- * [CXF-4098] - Implement JMX management of the CXF WS-Notification service
- * [CXF-4102] - Logging interceptors should show the binary content only
when requested
- * [CXF-4107] - JsonpInIinterceptor should set a default callback value if
no callback query parameter is available
- * [CXF-4116] - Equal URI templates should use a string comparison as the
last step
- * [CXF-4119] - support Certificates revocation check before encrypt when
use CXF WS-SecurityPolicy
- * [CXF-4120] - JMS Transport content-type should be consistent with the
HTTP transport
- * [CXF-4134] - GZIPOutInterceptor compiles Patterns constantly; they
should be compiled once and reused
- * [CXF-4138] - Fix the build hung of samples/jax_rs/minimal_osgi
- * [CXF-4143] - Make class name of PolicyBasedWSS4JOutInterceptorInternal
externally available
- * [CXF-4160] - Support signing a SAML token using the requested signature
and canonicalization algorithm
- * [CXF-4167] - Configure CORS allowOrigins addresses in XML
- * [CXF-4169] - make nested exception causes available at the client
- * [CXF-4175] - CXF2.5.3 not compatible with jetty7.6.x
- * [CXF-4176] - preserve namespace prefixes in Transform Feature to support
QName resolution for content
- * [CXF-4182] - Make jaxws.provider.interpretNullAsOneway property
configurable using a string value
- * [CXF-4189] - Exception by None address in ReplyTo header for
request-response MEP
- * [CXF-4204] - CXF https transport should support to specify the cert
alias name
- * [CXF-4211] - Update the CXF bundle of "net.sf.ehcache" importing to be
optional
- * [CXF-4217] - Introduce Nullable annotations to override the default
handling of empty payloads by JAXB providers
- * [CXF-4223] - Extend fault policy interceptors with POLICY_OVERRIDE
- * [CXF-4225] - Update JAXB providers to support Listener properties
- * [CXF-4230] - Update Javadoc of GZIPFeature
- * [CXF-4236] - Changing Maven Name for CXF-Services from CXF Runtime to
CXF Services
-
-** New Feature
- * [CXF-2864] - Support UsernameToken derived keys
- * [CXF-3635] - WS-Trust SPNego (WCF message level spnego)
- * [CXF-4083] - Blueprint http-jetty
- * [CXF-4084] - Blueprint http
- * [CXF-4091] - add a robust in-only processing option for oneway call
- * [CXF-4093] - NameIDFormat of SAML Subject configurable
- * [CXF-4096] - add a robust in-only processing option for oneway call with
WS-Addressing
- * [CXF-4137] - WS-RM needs feature support for configuring the
WS-Addressing version used with WS-RM 1.0
- * [CXF-4173] - Support for ClaimValue element of federation claims dialect
added
- * [CXF-4212] - Support RBAC in JAX-WS WebServiceContext based on received
SAML token
+ * [CXF-4145] - Add the ability to restrict what algorithms were used for
encryption/signature
+ * [CXF-4146] - Add the ability to use the same Encryption/Signature
algorithms as was received
+ * [CXF-4248] - DocLiteralInInterceptor throws NPE if oneWay operation
sends non-empty response
+ * [CXF-4249] - Add to RMTxStore configuration options for schema name and
datasource
+ * [CXF-4252] - cxf:list-endpoints karaf command should also have a busid
column
+ * [CXF-4256] - Improve the optional generation of enum classes by WADL
generator
+ * [CXF-4257] - Should catch RejectedExecutionException in WS-Addr's
rebaseReponse as done in OneWayProcessorInterceptor
+ * [CXF-4270] - Store bus-id with the endpoint name in WS-RM's RMTxStore to
correctly recover two endpoints with the same endpoint name
+ * [CXF-4274] - Support useReqSigCert for encrypting the responses from
JAX-RS endpoints
+ * [CXF-4276] - Make WS-RM's default store instance RMTxStore to be
shareable
+ * [CXF-4282] - Make additional properties of WS-RM's RMTxStore
configurable using spring and blueprint namespace handlers
+ * [CXF-4290] - Allow user-specified classloader for JAXRSClientFactory
+ * [CXF-4304] - Complete WSA support for STS client configuration via EPR
+ * [CXF-4308] - Add option for disabling STS client WS-MEX invocation using
WSA EPR address
+ * [CXF-4311] - WADL to Java generator should try to create unique method
names when no method ids are available
+ * [CXF-4314] - Introduce a search bean which can hold properties with
different names
+ * [CXF-4322] - Update RequestDispatcherProvider to do the basic discovery
of view handlers based on the current class name
+ * [CXF-4326] - Remove the XPathFactory.newInstance from XPathUtils'
constructor to improve the performance a bit
+ * [CXF-4327] - Add blueprint support on the cxf-clustering
+ * [CXF-4328] - Add spring schema for cxf clustering
+ * [CXF-4338] - config option to allow suppression of server version
display in http response headers
+ * [CXF-4345] - Allow user-specified feature for JAXRSClientFactory
+ * [CXF-4346] - Support to set the messageType from the jms URI
** Task
- * [CXF-4074] - Move the CORS code to rs/security/cors
- * [CXF-4135] - Allow xsd shema file as a jaxb binding file to pass into
JAXB schmeCompiler
-
+ * [CXF-4247] - Add cache for not found wrapper class to avoid trying load
them for many times
+** Test
+ * [CXF-4126] - Can override built-in action on WSS4JOutInterceptor but
seems impossible to add a new custom action on WSS4JOutInterceptor
+ * [CXF-4335] - WSSecTest use some unecessary properties for
WSS4JInterceptor configuration
