Because of the issues I discussed in the 'Bug in Cipher class?' thread, I'd love to see:
1. Don't require a keystore file if the user just wants to use a secret key specified in a callback or config setting. This requires two small changes in the WSHandler class. This allows users to deploy web services in self-contained ear files that don't require configuring a keystore. 2. Allow the user to specify using a lightweight API such as BouncyCastle's intead of the JCE interface, which in my experience is problematic on WebSphere. (This also requires a change in the xml-security library.) cheers, Michael Davis Ottawa > -----Original Message----- > From: Davanum Srinivas [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 25, 2007 11:43 AM > To: Fred Dushin > Cc: [email protected] > Subject: Re: Roadmap? > > > Let's start with #1 (mavenize), #2 (WS-Security 1.1), #3 (XPath > expressions). Am not sure (+0) for #4 (replace OpenSAML with jaxb > generated code). Am definitely -1 on moving to JDK1.5. There is no > reason to drop 1.4 support. > > thanks, > dims > > On 7/25/07, Fred Dushin <[EMAIL PROTECTED]> wrote: > > Hi folks, > > > > Has there been any discussion of a roadmap for WSS4J? > > > > I've been contemplating a few things, but I don't have an concrete > > strategies: > > > > * Fully mavenize the source tree > > * maybe factor out the axis stuff from the core toolkit > > * WS-Security 1.1 support > > * Support for part protection based on XPath expressions (For WS- > > SecurityPolicy) > > * Support for JAX-B generated types (would make SAML 2.0 a lot > > easier to manage) > > * Move to 1.5, once and for all? > > > > Not sure of the implications for Axis. (I'm mostly coming from an > > XFire/CXF angle) > > > > What are people's thoughts about this? (developers and users) > > > > Thanks! > > -Fred > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > > > > > -- > Davanum Srinivas :: http://davanum.wordpress.com > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
