Re: [VOTE] Release Apache CXF 2.6.0
+1 - Dennis On 04/13/2012 08:26 AM, Daniel Kulp wrote: It's been 6 months since the 2.5.0 release and thus it's time for the 2.6 release. We've been VERY busy with many new features, lots of refactoring, bunch of OSGi enhancements, etc... The migration guide at: http://cxf.apache.org/docs/26-migration-guide.html is certainly one of the "longest" migration guides we've had, although a large part of the reason for that is the extra extensive testing that's been done with 2.6.0 to identify as many issues as possible. The maven staging area: https://repository.apache.org/content/repositories/orgapachecxf-039/ This release is tagged at: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.6.0 The distributions are in the org/apache/cxf/apache-cxf/ directory of the Maven staging area. This vote will be open for at least 72 hours.
Re: [VOTE] Apache CXF 2.3.10/2.4.7/2.5.3
+1 - Dennis On 04/13/2012 08:23 AM, Daniel Kulp wrote: We've resolved over 110 issues since 2.5.2 which is a very large amount. We've back ported over 75 of them to 2.4.7 and 25 to 2.3.10. These patch releases are certainly overdue. List of issues: 2.3.10: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319493 2.4.7: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319492 2.5.3: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319491 The Maven staging areas are at: 2.3.10: https://repository.apache.org/content/repositories/orgapachecxf-033/ 2.4.7: https://repository.apache.org/content/repositories/orgapachecxf-034/ 2.5.3: https://repository.apache.org/content/repositories/orgapachecxf-038/ The distributions are in the org/apache/cxf/apache-cxf/ directory of the Maven staging areas. This releases are tagged at: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.3.10 http://svn.apache.org/repos/asf/cxf/tags/cxf-2.4.7 http://svn.apache.org/repos/asf/cxf/tags/cxf-2.5.3 This vote will be open for at least 72 hours.
Re: [VOTE] Release Apache CXF 2.6.0
+1 Aki 2012/4/12 Daniel Kulp : > > It's been 6 months since the 2.5.0 release and thus it's time for the 2.6 > release. We've been VERY busy with many new features, lots of refactoring, > bunch of OSGi enhancements, etc... The migration guide at: > > http://cxf.apache.org/docs/26-migration-guide.html > > is certainly one of the "longest" migration guides we've had, although a > large part of the reason for that is the extra extensive testing that's been > done with 2.6.0 to identify as many issues as possible. > > > > The maven staging area: > https://repository.apache.org/content/repositories/orgapachecxf-039/ > > This release is tagged at: > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.6.0 > > The distributions are in the org/apache/cxf/apache-cxf/ directory of the > Maven staging area. > > > > This vote will be open for at least 72 hours. > > > -- > Daniel Kulp > dk...@apache.org - http://dankulp.com/blog > Talend Community Coder - http://coders.talend.com
Re: [VOTE] Apache CXF 2.3.10/2.4.7/2.5.3
+1 Aki 2012/4/12 Daniel Kulp : > > We've resolved over 110 issues since 2.5.2 which is a very large amount. > We've back ported over 75 of them to 2.4.7 and 25 to 2.3.10. These patch > releases are certainly overdue. > > > List of issues: > 2.3.10: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319493 > 2.4.7: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319492 > 2.5.3: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319491 > > > The Maven staging areas are at: > 2.3.10: > https://repository.apache.org/content/repositories/orgapachecxf-033/ > 2.4.7: > https://repository.apache.org/content/repositories/orgapachecxf-034/ > 2.5.3: > https://repository.apache.org/content/repositories/orgapachecxf-038/ > > > The distributions are in the org/apache/cxf/apache-cxf/ directory of the > Maven staging areas. > > > This releases are tagged at: > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.3.10 > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.4.7 > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.5.3 > > > This vote will be open for at least 72 hours. > -- > Daniel Kulp > dk...@apache.org - http://dankulp.com/blog > Talend Community Coder - http://coders.talend.com
Re: [VOTE] Apache CXF 2.3.10/2.4.7/2.5.3
+1 On Apr 12, 2012, at 14:23, Daniel Kulp wrote: > > We've resolved over 110 issues since 2.5.2 which is a very large amount. > We've back ported over 75 of them to 2.4.7 and 25 to 2.3.10. These patch > releases are certainly overdue. > > > List of issues: > 2.3.10: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319493 > 2.4.7: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319492 > 2.5.3: > https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319491 > > > The Maven staging areas are at: > 2.3.10: > https://repository.apache.org/content/repositories/orgapachecxf-033/ > 2.4.7: > https://repository.apache.org/content/repositories/orgapachecxf-034/ > 2.5.3: > https://repository.apache.org/content/repositories/orgapachecxf-038/ > > > The distributions are in the org/apache/cxf/apache-cxf/ directory of the > Maven staging areas. > > > This releases are tagged at: > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.3.10 > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.4.7 > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.5.3 > > > This vote will be open for at least 72 hours. > -- > Daniel Kulp > dk...@apache.org - http://dankulp.com/blog > Talend Community Coder - http://coders.talend.com
Re: [VOTE] Release Apache CXF 2.6.0
+1 - non binding. On Apr 13, 2012, at 8:55, Glen Mazza wrote: > +1 > > Glen > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/VOTE-Release-Apache-CXF-2-6-0-tp5636705p5638535.html > Sent from the cxf-dev mailing list archive at Nabble.com.
Re: [jira] [Resolved] (CXF-4051) Custom OAuth scopes are not supported
Hi On 13/04/12 17:27, jordi wrote: Hi Sergey, thanks a lot for your answer, but now I've got a new doubt... :-( To build the authorization header I use the following piece of code: WebClient wc = WebClient.create("http://localhost:8080/oauth/initiate";); wc.accept("application/x-www-form-urlencoded,text/html,application/xhtml+xml,application/xml"); Consumer consumer = new Consumer(aKey, aSecretKey); URI callback = new URI("http://localhost:8080/dummyclient/callback";); // CXF extra parameters Map extra = new HashMap(); extra.put("x_oauth_uri", "users/list"); extra.put("x_oauth_scope", "read_profile"); extra.put("state", "intercepted"); // Token rt = OAuthClientUtils.getRequestToken(wc, consumer, callback, extra); But if I try to run it without adding the Google library I received the error: Exception in thread "main" java.lang.NoClassDefFoundError: net/oauth/OAuthConsumer at org.apache.cxf.rs.security.oauth.client.OAuthClientUtils.getRequestToken(OAuthClientUtils.java:84) So, how can I avoid that? This class is in the net core module so add it as a dependency please HTH, Sergey Thanks in advance, Jordi -- View this message in context: http://cxf.547215.n5.nabble.com/jira-Created-CXF-4051-Custom-OAuth-scopes-are-not-supported-tp5164840p5638815.html Sent from the cxf-issues mailing list archive at Nabble.com. -- Sergey Beryozkin Talend Community Coders http://coders.talend.com/ Blog: http://sberyozkin.blogspot.com
Re: [VOTE] Release Apache CXF 2.6.0
+1 Glen -- View this message in context: http://cxf.547215.n5.nabble.com/VOTE-Release-Apache-CXF-2-6-0-tp5636705p5638535.html Sent from the cxf-dev mailing list archive at Nabble.com.
Re: On OpenSAML dependency
OK, thanks. On 04/13/2012 02:10 PM, Colm O hEigeartaigh wrote: > Hi Alessio, > > OpenSAML is also required for adding or validating SAML Assertions in > the security runtime, and so I would say it is a required dependency. > For example, the AbstractBindingBuilder has a direct dependency on an > Opensaml import. > > Previously (prior to CXF 2.5 iirc) it was an optional dependency. I > don't see any reason why it should be optional given that it's a core > component of both WSS4J and any SAML functionality in CXF. > > Colm. > > On Fri, Apr 13, 2012 at 12:57 PM, Alessio Soldano wrote: >> Hi, >> I've just been running some tests with Apache CXF 2.5.3 tag and noticed >> that I have some failures in the JBossWS integration due to missing >> opensaml classes at runtime. >> AFAICS, the org.opensaml:opensaml dependency is pulled in through WSS4J >> 1.6.5 and I initially assumed it would have been required for WS-Trust / >> STS functionalities only. To be honest, I've been using almost all the >> WS-Security functionalities (except anything related to WS-Trust) of >> 2.5.2 and 2.5.x branch of a couple of weeks ago without that dependency >> available at runtime. >> However, the fix for CXF-4212 now causes the WSS4JInInterceptor to have >> a direct dependency to OpenSAML. When the Spring Bus is being used, any >> attempt to load a bus whose definition includes the WSS4JInInterceptor >> is going to early fail is OpenSaml is not available (as Spring inspects >> beans' classes when the bus is built up). >> Do we really want this behaviour? Are we trying to somehow define >> boundaries for this dependency (for instance considering its size, >> including transitive required sub-dependencies) or this is not perceived >> as an issue at all? >> >> Cheers >> Alessio >> >> -- >> Alessio Soldano >> Web Service Lead, JBoss > > > -- Alessio Soldano Web Service Lead, JBoss
Re: On OpenSAML dependency
Hi Alessio, OpenSAML is also required for adding or validating SAML Assertions in the security runtime, and so I would say it is a required dependency. For example, the AbstractBindingBuilder has a direct dependency on an Opensaml import. Previously (prior to CXF 2.5 iirc) it was an optional dependency. I don't see any reason why it should be optional given that it's a core component of both WSS4J and any SAML functionality in CXF. Colm. On Fri, Apr 13, 2012 at 12:57 PM, Alessio Soldano wrote: > Hi, > I've just been running some tests with Apache CXF 2.5.3 tag and noticed > that I have some failures in the JBossWS integration due to missing > opensaml classes at runtime. > AFAICS, the org.opensaml:opensaml dependency is pulled in through WSS4J > 1.6.5 and I initially assumed it would have been required for WS-Trust / > STS functionalities only. To be honest, I've been using almost all the > WS-Security functionalities (except anything related to WS-Trust) of > 2.5.2 and 2.5.x branch of a couple of weeks ago without that dependency > available at runtime. > However, the fix for CXF-4212 now causes the WSS4JInInterceptor to have > a direct dependency to OpenSAML. When the Spring Bus is being used, any > attempt to load a bus whose definition includes the WSS4JInInterceptor > is going to early fail is OpenSaml is not available (as Spring inspects > beans' classes when the bus is built up). > Do we really want this behaviour? Are we trying to somehow define > boundaries for this dependency (for instance considering its size, > including transitive required sub-dependencies) or this is not perceived > as an issue at all? > > Cheers > Alessio > > -- > Alessio Soldano > Web Service Lead, JBoss -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
On OpenSAML dependency
Hi, I've just been running some tests with Apache CXF 2.5.3 tag and noticed that I have some failures in the JBossWS integration due to missing opensaml classes at runtime. AFAICS, the org.opensaml:opensaml dependency is pulled in through WSS4J 1.6.5 and I initially assumed it would have been required for WS-Trust / STS functionalities only. To be honest, I've been using almost all the WS-Security functionalities (except anything related to WS-Trust) of 2.5.2 and 2.5.x branch of a couple of weeks ago without that dependency available at runtime. However, the fix for CXF-4212 now causes the WSS4JInInterceptor to have a direct dependency to OpenSAML. When the Spring Bus is being used, any attempt to load a bus whose definition includes the WSS4JInInterceptor is going to early fail is OpenSaml is not available (as Spring inspects beans' classes when the bus is built up). Do we really want this behaviour? Are we trying to somehow define boundaries for this dependency (for instance considering its size, including transitive required sub-dependencies) or this is not perceived as an issue at all? Cheers Alessio -- Alessio Soldano Web Service Lead, JBoss
Re: [VOTE] Release Apache CXF 2.6.0
+1 Alessio On 04/12/2012 10:26 PM, Daniel Kulp wrote: > > It's been 6 months since the 2.5.0 release and thus it's time for the 2.6 > release. We've been VERY busy with many new features, lots of refactoring, > bunch of OSGi enhancements, etc... The migration guide at: > > http://cxf.apache.org/docs/26-migration-guide.html > > is certainly one of the "longest" migration guides we've had, although a > large part of the reason for that is the extra extensive testing that's been > done with 2.6.0 to identify as many issues as possible. > > > > The maven staging area: > https://repository.apache.org/content/repositories/orgapachecxf-039/ > > This release is tagged at: > http://svn.apache.org/repos/asf/cxf/tags/cxf-2.6.0 > > The distributions are in the org/apache/cxf/apache-cxf/ directory of the > Maven staging area. > > > > This vote will be open for at least 72 hours. > > -- Alessio Soldano Web Service Lead, JBoss
Re: [VOTE] Apache CXF 2.3.10/2.4.7/2.5.3
+1. Colm. On Fri, Apr 13, 2012 at 8:06 AM, Christian Schneider wrote: > +1 > > Christian > > Am 12.04.2012 22:23, schrieb Daniel Kulp: > >> We've resolved over 110 issues since 2.5.2 which is a very large amount. >> We've back ported over 75 of them to 2.4.7 and 25 to 2.3.10. These patch >> releases are certainly overdue. >> >> >> List of issues: >> 2.3.10: >> >> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319493 >> 2.4.7: >> >> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319492 >> 2.5.3: >> >> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319491 >> >> >> The Maven staging areas are at: >> 2.3.10: >> https://repository.apache.org/content/repositories/orgapachecxf-033/ >> 2.4.7: >> https://repository.apache.org/content/repositories/orgapachecxf-034/ >> 2.5.3: >> https://repository.apache.org/content/repositories/orgapachecxf-038/ >> >> >> The distributions are in the org/apache/cxf/apache-cxf/ directory of the >> Maven staging areas. >> >> >> This releases are tagged at: >> http://svn.apache.org/repos/asf/cxf/tags/cxf-2.3.10 >> http://svn.apache.org/repos/asf/cxf/tags/cxf-2.4.7 >> http://svn.apache.org/repos/asf/cxf/tags/cxf-2.5.3 >> >> >> This vote will be open for at least 72 hours. > > > > -- > Christian Schneider > http://www.liquid-reality.de > > Open Source Architect > Talend Application Integration Division http://www.talend.com > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
Re: [VOTE] Release Apache CXF 2.6.0
+1. Colm. On Fri, Apr 13, 2012 at 8:06 AM, Christian Schneider wrote: > +1 > > Christian > > Am 12.04.2012 22:26, schrieb Daniel Kulp: > >> It's been 6 months since the 2.5.0 release and thus it's time for the 2.6 >> release. We've been VERY busy with many new features, lots of >> refactoring, >> bunch of OSGi enhancements, etc... The migration guide at: >> >> http://cxf.apache.org/docs/26-migration-guide.html >> >> is certainly one of the "longest" migration guides we've had, although a >> large part of the reason for that is the extra extensive testing that's >> been >> done with 2.6.0 to identify as many issues as possible. >> >> >> >> The maven staging area: >> https://repository.apache.org/content/repositories/orgapachecxf-039/ >> >> This release is tagged at: >> http://svn.apache.org/repos/asf/cxf/tags/cxf-2.6.0 >> >> The distributions are in the org/apache/cxf/apache-cxf/ directory of the >> Maven staging area. >> >> >> >> This vote will be open for at least 72 hours. >> >> > > > -- > Christian Schneider > http://www.liquid-reality.de > > Open Source Architect > Talend Application Integration Division http://www.talend.com > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
Re: [VOTE] Apache CXF 2.3.10/2.4.7/2.5.3
+1 Christian Am 12.04.2012 22:23, schrieb Daniel Kulp: We've resolved over 110 issues since 2.5.2 which is a very large amount. We've back ported over 75 of them to 2.4.7 and 25 to 2.3.10. These patch releases are certainly overdue. List of issues: 2.3.10: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319493 2.4.7: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319492 2.5.3: https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310511&version=12319491 The Maven staging areas are at: 2.3.10: https://repository.apache.org/content/repositories/orgapachecxf-033/ 2.4.7: https://repository.apache.org/content/repositories/orgapachecxf-034/ 2.5.3: https://repository.apache.org/content/repositories/orgapachecxf-038/ The distributions are in the org/apache/cxf/apache-cxf/ directory of the Maven staging areas. This releases are tagged at: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.3.10 http://svn.apache.org/repos/asf/cxf/tags/cxf-2.4.7 http://svn.apache.org/repos/asf/cxf/tags/cxf-2.5.3 This vote will be open for at least 72 hours. -- Christian Schneider http://www.liquid-reality.de Open Source Architect Talend Application Integration Division http://www.talend.com
Re: [VOTE] Release Apache CXF 2.6.0
+1 Christian Am 12.04.2012 22:26, schrieb Daniel Kulp: It's been 6 months since the 2.5.0 release and thus it's time for the 2.6 release. We've been VERY busy with many new features, lots of refactoring, bunch of OSGi enhancements, etc... The migration guide at: http://cxf.apache.org/docs/26-migration-guide.html is certainly one of the "longest" migration guides we've had, although a large part of the reason for that is the extra extensive testing that's been done with 2.6.0 to identify as many issues as possible. The maven staging area: https://repository.apache.org/content/repositories/orgapachecxf-039/ This release is tagged at: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.6.0 The distributions are in the org/apache/cxf/apache-cxf/ directory of the Maven staging area. This vote will be open for at least 72 hours. -- Christian Schneider http://www.liquid-reality.de Open Source Architect Talend Application Integration Division http://www.talend.com