Apache CXF 2.6.8 Release Notes

1. Overview

The 2.6.x versions of Apache CXF are significant new versions of CXF 
that provides several new features and enhancements.  

New features include: 
* The big OSGi bundle used in the Karaf features.xml has been replaced 
  with the individual modules which are now all individual bundles. 
  The big OSGi bundle is still built, but some features may not be 
  available if that is used instead of the little bundles.
* New ability to configure HTTP Conduits from the OSGi config:admin service
* New ability to configure the CXF created HTTP Jetty ports from 
  config:admin service
* OAuth 2 support (new cxf-rt-rs-security-oauth2 module)
* The STS now supports the Renewal binding for SAML tokens.
* The STS also supports bulk issuing/validation/cancelling/renewal of 
  security tokens.
* The STS supports some advanced features based around Claims, such as 
  Claims Transformation, and pluggable custom Claims Parsing.
* The WS-Security module now supports replay detection by default of 
  Timestamps and UsernameToken nonces.
* New ability to register custom JAX-RS Context providers.
* New @UseAsyncMethod annotation for JAX-WS services.


Users are encourage to review the migration guide at:
http://cxf.apache.org/docs/26-migration-guide.html
for further information and requirements for upgrading to 2.6.x. In
particular, making the jars all OSGi bundles required moving some
packages around and marking many transitive dependencies as optional.
User applications may need to add additional dependencies into their
applications in order to upgrade.


2.6.8 fixes over 27 JIRA issues reported by users and the community.



2. Installation Prerequisites 

Before installing Apache CXF, make sure the following products,
with the specified versions, are installed on your system:

    * Java 5 Development Kit
    * Apache Maven 2.2.1 or 3.x to build the samples


3.  Integrating CXF Into You Application

If you use Maven to build your application, you need merely add
appropriate dependencies. See the pom.xml files in the samples.

If you don't use Maven, you'll need to add one or more jars to your
classpath. The file lib/WHICH_JARS should help you decide which 
jars you need.

4. Building the Samples

Building the samples included in the binary distribution is easy. Change to
the samples directory and follow the build instructions in the README.txt file 
included with each sample.

5. Reporting Problems

If you have any problems or want to send feedback of any kind, please e-mail the
CXF dev list, dev@cxf.apache.org.  You can also file issues in JIRA at:

http://issues.apache.org/jira/browse/CXF

6. Migration notes:

See the migration guide at:
http://cxf.apache.org/docs/26-migration-guide.html
for caveats when upgrading from CXF 2.5.x to 2.6.x.


7. Specific issues, features, and improvements fixed in this version

** Sub-task
    * [CXF-4924] - Many docLocation for a server address

** Bug
    * [CXF-4897] - STS: check not found certificates in DefaultSubjectProvider for symmetric key type
    * [CXF-4938] - Setting RuntimeDelegate instance in CXFNonSpringJaxrsServlet is too aggresive
    * [CXF-4940] - CXF not (always) responding with the correct exception when working with an exception hierarchy
    * [CXF-4941] - WS-RM related faults do not contain the correct addressing action
    * [CXF-4946] - SourceGenerator needs to use URI resolve function when dealing with relative references containing parent folders
    * [CXF-4947] - Potential problems with the JAXBContext being null
    * [CXF-4949] - FIQL - searchContext returns null SearchCondition
    * [CXF-4951] - cxf-codegen-plugin wsdlArtifact ignores classifier
    * [CXF-4954] - CryptoCoverageChecker prevents handling of SOAPFault-Responses
    * [CXF-4964] - NPE is thrown when WS-RM's destination has no ackPolicy configured
    * [CXF-4967] - JSONProvider will throw NPE if DOM Document is used and dropRootElement and ignoreNamespaces properties are set
    * [CXF-4969] - ExceptionMapper not used for exception in resource setter
    * [CXF-4970] - cxf servlet transport doesn't work when the endpoint deployed by using Spring within OSGi
    * [CXF-4975] - CXFNonSpringJaxrsServlet needs to ensure an optional Application path starts from "/"
    * [CXF-4979] - WadlGenerator generates invalid xml for QueryParameters with a default value containing " characters
    * [CXF-4982] - Codegen maven plugin fails forked execution on Windows XP environment
    * [CXF-4990] - When thrown the fault from logical handle, the namespace setting doesn't work 
    * [CXF-4991] - Classloading issue with EH-Cache availability checks
    * [CXF-4992] - proxy sub-resources creating wrong request URIs with non-HTTP transports

** Improvement
    * [CXF-4747] - Support easier configuration of Spring bus with WebClient
    * [CXF-4825] - Remove static JAX-RS API calls from within JAX-RS server and client runtimes
    * [CXF-4968] - Add an option to limit the number of active sequences that are created at WS-RM endpoints
    * [CXF-4997] - Skip PolicyBasedWSS4JInInterceptor processing when AssertionInfoMap not available
    * [CXF-4998] - JAXRSClientFactory: Missing factory method for username+password and providers

** New Feature
    * [CXF-4936] - (PATCH) Expose FastInfoset serializer tuning properties

** Task
    * [CXF-4956] - upgrade servicemix.specs to 2.2.0