Apache CXF Changelog

What's new in Apache CXF 3.0.3

Dec 10, 2014

Bug:
[CXF-6030] - javax.xml.ws.soap.SOAPFaultException: Fault string, and possibly fault code, not set for cxf.
[CXF-6034] - Wrong schemaLocation if jax-ws-catalog is used
[CXF-6038] - Repeatedly invoking setHandlerChain() can cause a build up of handler interceptors on the chain
[CXF-6041] - Corba Binding is throwing a ObjectNotActive Corba exception being thrown back to application code on endpoint/bus shutdown
[CXF-6045] - Setting an entity from ClientRequestFilter has no effect if no entity is already set
[CXF-6057] - WADL to Java code generator does not support the documented "encoding" flag
[CXF-6058] - NPE in cxf-rt-transports-http org.apache.cxf.transport.http.Headers line 280
[CXF-6059] - wsdl:fault wsdl2java fails with IllegalArgumentException
[CXF-6060] - Calling readEntity() on Response created by Response.build() causes NullPointerException
[CXF-6061] - The publish attribute on jaxws:endpoint doesn't support placeholder in spring configuration
[CXF-6062] - Interceptors added in Spring Bus configuration are ignored
[CXF-6066] - JAX-RS 2.0 Client implementation is OOM prone due to its strongly referencing WebTargets
[CXF-6067] - ProviderFactory fails to analyze generic types correctly with some class hierachies
[CXF-6071] - CXF's WSDL2Java tool can generate impl classes that jdk compiler will refuse to compile
[CXF-6072] - jaxrs securityContext.getUserPrincipal is broken if login is done during the request
[CXF-6073] - cxf-wsn installation in Karaf fails
[CXF-6075] - NPE may occur at websocket destination under high load
[CXF-6076] - MediaType parameter not parsed correctly
[CXF-6077] - In OSGi, the wsdl extensor loaders may not be able to generate their special ExtensibilityELements
[CXF-6078] - AnnotationUtils.getAnnotatedMethod for abstract classes not inherit from interface
[CXF-6080] - Headers.logProtocolHeaders raise NPE on null header value
[CXF-6089] - XmlAccessorOrder.ALPHABETICAL, Exception.getMessage() duplicate WSDL elements generated
[CXF-6090] - java.lang.NullPointerException when running wsdl2java
[CXF-6091] - Server is not properly stopped with MultipleEndpointObserver
[CXF-6092] - When there is bad connection/timeout, ClientImpl throws NullPointerException
[CXF-6094] - wsdl2java - Default key managers cannot be initialized
[CXF-6101] - Accept Header not Respected with Response from Custom MessageReader
[CXF-6103] - Nillable field, in a json payload, was sent as "@nil":"true" instead of an empty string
[CXF-6104] - Support case insensitive mime types
[CXF-6105] - CXF 3.x does not use the older WS-SecurityPolicy 1.1 namespace
[CXF-6106] - ClientResponseFilterInterceptor wraps client response exchange message into ClientRequestContextImpl - as a result code can't access client request context
[CXF-6109] - Incorrect TrustException constructor in AbstractSTSClient
[CXF-6112] - org.apache.cxf.jaxrs.impl.ResourceContextImpl#getResource should support a custom ResourceProvider
[CXF-6113] - allow a kind of chain in org.apache.cxf.common.util.ClassHelper
[CXF-6115] - Transferable.transferTo can cause infinite loop or stack overflow
[CXF-6118] - Schema Validation refinements
[CXF-6122] - JAX-RS proxy client with @QueryParam is not encoding the parameter value
[CXF-6145] - WS-RM demo server throws exception
[CXF-6146] - Demo wsdl_first_xmlbeans fails to build
[CXF-6147] - Part of demo wsdl_first_soap12 doesnt work
Improvement:
[CXF-4242] - Add exception name to faultstring/detail/stackTrace
[CXF-6042] - Support certificate constraints in JAX-RS XML Signature
[CXF-6047] - Extend the STSTokenValidator to be able to call the issue binding
[CXF-6048] - Support roles in the AuthPolicyValidatingInterceptor
[CXF-6051] - Support sp13:Nonce + sp13:Created in the UsernameTokenInterceptor
[CXF-6054] - Add a property to allow using unsigned saml tokens as principals
[CXF-6064] - Improve WADL Generator Extensibility for ID generation
[CXF-6081] - Make it easier to control the way AccessTokenService checks the passwords
[CXF-6084] - Critical Header for JWS
[CXF-6086] - Disable SSLv3 by default for clients (+ servers based on Jetty)
[CXF-6087] - Add a way to exclude (multiple) SSL/TLS protocols in the HTTPJ namespace
[CXF-6107] - Supporting (Un)marshaller aware XML Readers and Writers in jaxb data binding
[CXF-6110] - AbstractSTSClient MEX: download XML schema from Location
[CXF-6120] - Optionally disable the creation of the JMS Security Context for incoming messages
New Feature:
[CXF-5996] - respect client cache headers
[CXF-6053] - Support JWS JSON Serialization
Task:
[CXF-6052] - Upgrade the Karaf version to support JDK8
[CXF-6121] - Update to Jettison 1.3.7
Test:
[CXF-6070] - NPE while calling a webservice using a clientproxy
Wish:
[CXF-6068] - Make org.apache.cxf.binding.soap.interceptor.ReadHeadersInterceptor compatible with WebSphere 7

New in Apache CXF 2.7.10 (Feb 10, 2014)

New in Apache CXF 3.0.0 M1 (Feb 10, 2014)

Sub-task:
[CXF-4924] - Many docLocation for a server address
[CXF-5042] - SSL supports
[CXF-5043] - Spring configuration supports
[CXF-5044] - blueprint configuration support
[CXF-5109] - Add supports of loading the netty transport with "netty://" perfix
[CXF-5120] - support the TLSSessionInfo generation
[CXF-5127] - Add the maxChunkContentSize option
[CXF-5309] - Support Bean Validation API for JAX-RS
Bug:
[CXF-4676] - Partial WSDL support in CXF
[CXF-4752] - TransformOutInterceptor does not transform SoapFaults
[CXF-4753] - stax outTransform cannot deep-drop an element that has some attributes
[CXF-4755] - StackOverflowError when ASMHelper tries to getClassCode from a parametrized type
[CXF-4766] - WADL to Java generator does not strip custom regular expressions from method names
[CXF-4767] - JAX-RS endpoints fail to register properly with ws-discovery service
[CXF-4770] - When passing NULL @PathParam to JAXRS Client Proxy it now throws NullPointerException instead of IllegalArgumentException as in prior releases (2.7.0)
[CXF-4773] - StackOverflowError when JAXBSchemaInitializer tries to process parametrized type Enum
[CXF-4774] - Java First ws policy attachments are not being serialised correctly
[CXF-4775] - HttpHeaders.getRequestHeader splits complex header values
[CXF-4781] - MacAccessTokenValidator needs a setter for the nonceVerifier variable
[CXF-4784] - enhance CXF to follow jaxws spec 3.6.2.3 when using RI or Axis2 client
[CXF-4787] - WADL to Java generator uses the system encoding to create the files
[CXF-4789] - EndorsingSupportingTokens do not respect ProtectTokens assertion from paired binding policy
[CXF-4790] - Set lang and subcode for soapfault
[CXF-4792] - throw versionmissmatch faultcode when send soap11 message to soap12 end point
[CXF-4794] - Soap 1.1 service returns an invalid soap fault for soap 1.2 requests
[CXF-4796] - Accessing Conduit in JAX-RS ClientConfiguration causes NPE if failover is enabled
[CXF-4797] - CachedWriter may leave temp files undeleted
[CXF-4803] - NPE is thrown while enabling fine log level in TrustDecisionUtil if MessageTrustDecider from message context is used
[CXF-4805] - SOAP services try to process HTTP 'OPTIONS'
[CXF-4812] - NPE on MessageModeInInterceptor when sending empty SOAPBody
[CXF-4813] - Java First @Policy at Operation level has some issues with supporting some policy alternatives
[CXF-4816] - Allow use of @Policy on Service Implementation as alternative to Interface
[CXF-4817] - JAX-RS AsyncResponse implementation needs to call AsyncContext.complete after the request is done
[CXF-4832] - META-INF/services/org.apache.cxf.bus.factory contains extra data on a second line
[CXF-4833] - IndexOutOfBoundException when printing stacktrace for ToolException
[CXF-4838] - Server-side endpoint may throw an NPE when a request message arrives while the endpoint is being stopped but not yet stopped
[CXF-4844] - Response header Content-type not recognized for asynchronous soap/http
[CXF-4847] - Data types not correctly published in WSDL from Exception classes
[CXF-4848] - WebClient does not process GenericEntity correctly
[CXF-4852] - Pre-Match ContainerRequestFilter can not replace request stream and URI
[CXF-4859] - Incorrect msg of COULD_NOT_SET_WRAPPER_STYLE in cxf-rt-core/src/main/org/apache/cxf/service/factory/Messages.properties
[CXF-4860] - Request.Inpustream Lost
[CXF-4861] - Encoding issue jax-rs - UriBuilder
[CXF-4863] - TerminateSequenceResponse must be returned in reponse to WS-RM 1.1 TerminateSequence
[CXF-4864] - DestinationSequence doesn't pick up right number when it deliverying the message InOrder
[CXF-4872] - JSONProvider can not drop a root element if DOM Document is copied to JSON
[CXF-4873] - javax.management.RuntimeOperationsException when register performance mbean using cxf webclient with an operation's uri containing some query params
[CXF-4874] - Data types for Fields not correctly published in WSDL from Exception classes
[CXF-4875] - NPE resolving policy reference
[CXF-4876] - CXF RespectBinding feature does not support the customized binding info under operation and its sub element.
[CXF-4888] - OAuthClientUtils ignore argument on getAccessToken()
[CXF-4891] - Cannot set content-type header
[CXF-4906] - Http Headers should ignore the case for "User-Agent"
[CXF-4909] - wadl2java: NPE in SourceGenerator when generating method with "plain" style parameter
[CXF-4912] - cxf rest client always picks the first ResponseExceptionMapper for a method with different exception throws
[CXF-4914] - ResponseBuilderImpl returns null on link() and links()
[CXF-4919] - UriInfo.relativize (and HttpUtils.relativize) broken
[CXF-4920] - TransformationInInterceptor fails when XML contains same namespace with different prefixes
[CXF-4921] - LinkBuilder can't be reused
[CXF-4922] - NPE is thrown at EP creation when no service class is specified and the wsdl cannot be loaded
[CXF-4927] - HttpHeaders.getRequestHeader has to return null if no header is available
[CXF-4929] - JAX-RS 2.0 filters do not work correctly with generic entities and annotations
[CXF-4932] - Illegal method arguments generated by Wadl2Java
[CXF-4934] - JAXRSInvoker and Proxy classes (Spring Security)
[CXF-4938] - Setting RuntimeDelegate instance in CXFNonSpringJaxrsServlet is too aggresive
[CXF-4940] - CXF not (always) responding with the correct exception when working with an exception hierarchy
[CXF-4941] - WS-RM related faults do not contain the correct addressing action
[CXF-4946] - SourceGenerator needs to use URI resolve function when dealing with relative references containing parent folders
[CXF-4949] - FIQL - searchContext returns null SearchCondition
[CXF-4951] - cxf-codegen-plugin wsdlArtifact ignores classifier
[CXF-4953] - JAXRSClientFactoryBean doesn't take the bus features into consideration
[CXF-4957] - remove dependency="true" for jsr339-api specs bundle
[CXF-4964] - NPE is thrown when WS-RM's destination has no ackPolicy configured
[CXF-4967] - JSONProvider will throw NPE if DOM Document is used and dropRootElement and ignoreNamespaces properties are set
[CXF-4969] - ExceptionMapper not used for exception in resource setter
[CXF-4975] - CXFNonSpringJaxrsServlet needs to ensure an optional Application path starts from "/"
[CXF-4979] - WadlGenerator generates invalid xml for QueryParameters with a default value containing " characters
[CXF-4982] - Codegen maven plugin fails forked execution on Windows XP environment
[CXF-4983] - Response.getStatusInfo does not work if the status code can not be mapped to Status enum
[CXF-4984] - JAX-RS server has to set Content-Type to application/octet-stream if it is not available
[CXF-4985] - ResponseBuilder should set 204 status if the status has not been set and the entity is null
[CXF-4986] - jax-rs2 request filter is unable to modify request header by adding a new header
[CXF-4990] - When thrown the fault from logical handle, the namespace setting doesn't work
[CXF-4991] - Classloading issue with EH-Cache availability checks
[CXF-4992] - proxy sub-resources creating wrong request URIs with non-HTTP transports
[CXF-4993] - LdapClaimsHandler can't find attributes if user authenticated against LDAP
[CXF-4996] - Issue after upgrading to jackson-jaxrs-json-provider 2.2.0 (from 2.1.4)
[CXF-5000] - NameBindings are ignored for Reader and Writer interceptors
[CXF-5002] - Documentation "Using WS-Reliable Messaging" contains errors and could be improved
[CXF-5005] - Wrong EPR match in WSDiscoveryProvider::handleResolve
[CXF-5009] - Allow multiple subcodes in a SOAP 1.2 fault
[CXF-5012] - Possible regression in the way proxies handle HTTP errors
[CXF-5014] - HTTP Response headers are split by default
[CXF-5016] - ArithmeticException on ResponseTimeCounterMBean.getAvgResponseTime() after counter reset()
[CXF-5017] - CrossOriginResourceSharingFilter FIELD_COMMA_PATTERN mangles firefox headers
[CXF-5020] - add NPE guard when we restore original java.class.path system property
[CXF-5021] - Static resources need the "application/javascript" content type for javascript files
[CXF-5026] - JAX-RS Async client does not work if HTTP error is returned
[CXF-5027] - JAX-RS XOP marshaller does not support SWA attachments
[CXF-5030] - Exception in opensaml initialization in OSGi: NoClassDefFoundError: org/apache/xml/security/Init
[CXF-5040] - support new asm4 shade of xbean
[CXF-5045] - UndeclaredThrowableException thrown in the client side when server responses with wsa:OnlyNonAnonymousAddressSupported soap12 version fault message
[CXF-5047] - Wrong soap:address generated in WSDL
[CXF-5050] - Already connected exception when using CXF client to invoke to the server
[CXF-5059] - Refine classloader in org.apache.cxf.wsdl11.WSDLManagerImpl
[CXF-5065] - Subresource operations do not see root resource Produces or Consumes annotations
[CXF-5073] - endless recursion in creating JAX-RS client proxy
[CXF-5082] - JAX-RS frontend has non-optional dependency on blueprint
[CXF-5084] - URIBuilder optimization prevents relative paths that startWith "h" "t" "t" "p"
[CXF-5086] - JSONProvider can not read explicit collections if unmarshallAsJaxbElement property is set
[CXF-5089] - java2ws generate both ref and nillabe attributes in a schema element
[CXF-5092] - RequestTokenService signature verification bug [OAuthUtils]
[CXF-5093] - HTTPConduit prevents AsyncConduit from sending the payloads when custom HTTP methods are used
[CXF-5100] - JAXB-based providers fail when they try to set JAXB RI-specific properties on non-RI implementations
[CXF-5104] - JAX-RS not injecting contexts after resuming a suspended continuation
[CXF-5108] - parameter beans feature not working through dynamic proxy based clients for JAXRS
[CXF-5110] - Wrong processing of @XmlJavaTypeAdapter with RPC style endpoints
[CXF-5111] - JAX-RS providers typed on arrays like String[] are not selected
[CXF-5112] - OAuthUtils causes IllegalArgumentException when returning 400 instead of 401
[CXF-5114] - CXF Client issue when try to handle session for One-Way Operation call
[CXF-5115] - Primitive arrays for capturing HTTP parameters are not supported
[CXF-5116] - DelegatingInputStream created in AbstractHTTPDestination is cached into wrong Message instance
[CXF-5126] - Creation of SecurityContext from JAAS Subject causes incorrect Principal for Kerberos authentication
[CXF-5129] - Content type is always "text/xml" in case of using @Context HttpServletResponse response
[CXF-5141] - CXFServlet hides ServletConfig parameters when creating a Servlet-specific ApplicationContext
[CXF-5143] - http-conf:server blueprint configuration doesn't work
[CXF-5144] - JAX-RS Client Proxy-based API connection leak
[CXF-5146] - JAX-RS client proxies do not unwrap TypeVariables
[CXF-5161] - AbstranctGrantHandler checks against "authorization_code" instead of supplied grant type
[CXF-5164] - Wrong class name in LogUtils.getL7dLogger() of org.apache.cxf.aegis.databinding.XMLStreamDataWriter class
[CXF-5167] - HEAD operation implementation is not compliant with specification
[CXF-5175] - ?_wadl generates a ClassCastException
[CXF-5184] - javax.ws.rs.NotFoundException while using LoadDistributorFeature after failover of 1st node or with single node configured
[CXF-5185] - Memory leak if no addresses are specified for SequentialStrategy
[CXF-5186] - SOAP 1.2 fault reason xml:lang attribute not properly parsed on client side
[CXF-5191] - StaxUtils readQName does not accept leading and trailing whitespaces
[CXF-5196] - Failover feature doesn't work when client uses async invocation
[CXF-5198] - FiqlParser fails to parse an expression with camel case when SearchBean is used
[CXF-5204] - JAX-RS runtime checks TypeVariable bounds too early
[CXF-5214] - Using BeanParam in a subresource results in exception
[CXF-5218] - WS-RM's destination's fault handling should distinguish protocol related faults from other faults
[CXF-5219] - @XmlJavaTypeAdapter ignored for exception members
[CXF-5226] - OAuth public clients don't appear to work in RedirectionGrantServices
[CXF-5228] - Rest client reports interface not visible for service interface
[CXF-5230] - Message element is not generated for Exception class
[CXF-5231] - NoSuchElementException in ClientFaultConverter when stack trace message contains line breaks
[CXF-5237] - Schema validatation doesn't work in mtom enabled provider service
[CXF-5240] - Jsonp interceptors do not work with GZIPOutInterceptor
[CXF-5243] - JAX-RS 2.0 ContainerRequestContext#getEntityStream() doesn't return request payload
[CXF-5244] - It is not possible to update Content-Type inside JAX-RS 2.0 ContainerRequestFilter
[CXF-5245] - JAXRS SpringResourceFactory does not work correctly with lifecycle methods
[CXF-5246] - Conflicting schema namespaces for services with same set of schema classes
[CXF-5247] - JAXRS proxies do not work with BeanParams
[CXF-5248] - Signed SAML assertion validation error w/ SupportingTokens only policy
[CXF-5259] - XKMS client does not start in Eclipse RCP
[CXF-5260] - XKMS-client should not contain CryptoProviderFactory interface
[CXF-5262] - ReaderInterceptor and WriterInterceptor contexts should select new MBR or MBW when possible
[CXF-5265] - Netty Http transport can handler ?wsdl request rightly
[CXF-5268] - Automatic WS-Policy computation should be possible on Dispatch clients without setting operation manually
[CXF-5272] - NPE will cause the camel-cxf endpoint start error in blueprint
[CXF-5276] - TransformOutInterceptor needs to ignore messages with transform.skip property set
[CXF-5280] - wsdl2java may fail to extract the wsma:Action attribute value
[CXF-5283] - sts: NoClassDefFoundError in LoggerListener
[CXF-5284] - CXF clients do not work in Eclipse RCP: Exception says BindingProvider interface not visible
[CXF-5285] - java.lang.UnsupportedOperationException in org.apache.cxf.jaxrs.model.wadl.WadlGenerator
[CXF-5289] - WADLGenerator misses Description annotations if they are bound to interfaces
[CXF-5296] - OAuth2ClientUtils can not get access token if custom params contain semicolon or no token_type param is available
[CXF-5299] - FiqlParser fails to parse an expression with child properties when SearchBean is used
[CXF-5307] - Add DecoupledFaultHandler for request-response message when decoupled fault is supported
[CXF-5328] - JAX-RS ProviderFactory ignores MBR/MBW typed on Object for primitive arrays
[CXF-5331] - Permission and Property are missing Serializable interface
[CXF-5336] - WADLGenerator does not support XmlType, does not link JSON and misses package info for collections
[CXF-5337] - HTTPConduit blocks DELETE with body
[CXF-5341] - NPE in org.apache.cxf.jaxws.support.JaxWsEndpointImpl.checkRespectBindingFeature
[CXF-5343] - ClientRequestFilterInterceptor uses a wrong phase
[CXF-5346] - Shared filters registered through DynamicFeature are not considered
[CXF-5347] - Request routing is broken when the URL contains both jsessionid and an extension
[CXF-5359] - xkms.endpoint property change will not take effect automatically
[CXF-5361] - Attachments iterator may incorrectly handle its remove operation
[CXF-5368] - filename with ";" in file upload throws StringIndexOutOfBoundsException
[CXF-5369] - XKMS Crypto provider throws exceptions due not found certificate instead returning empty array
[CXF-5370] - Refactor STS logging to split mapping from log writing
[CXF-5371] - JAXRSInInterceptor expects JAXRSInvoker to block if Response is already available
[CXF-5372] - ServerEngineFactoryHolder should release JAXB classes when it is destroyed
[CXF-5373] - Issue resolving AsynchResponse
[CXF-5378] - CXF failover feature doesn't work in osgi
[CXF-5384] - AccessTokenGrant should extend Serializable
[CXF-5385] - CXF 2.7.7 on Websphere 8.5.0 is not able to generate WADL.
[CXF-5386] - Multipart params of type InputStream don't show in generated WADL
[CXF-5390] - AbstractSamlBase64InHandler goes into infinite loop when processing bad header value.
[CXF-5391] - Response code is not logged for SOAP responses
[CXF-5392] - Custom Marshalling Validation Event Handler
[CXF-5394] - ImplicitGrantService always redirect to broken redirect url
[CXF-5395] - ImplicitGrantService always redirect to broken redirect url
[CXF-5396] - AbstractGrant.toMap hardcode the grandType to Client_Credentials
[CXF-5404] - NPE in AtomPojoProvider when no content (or content is empty)
[CXF-5406] - ClassCastException in AtomPojoProvider when an Atom entry is returned with a media-type of application/atom+xml (no type parameter)
Improvement:
[CXF-2118] - Add an application level control on WS-RM sequence termination
[CXF-3021] - Try to remove a wsdl4J dependency from the JAXRS frontend
[CXF-4543] - Encode multi value claims as multi-value saml attribute
[CXF-4747] - Support easier configuration of Spring bus with WebClient
[CXF-4760] - Provide ability to disable chunked transfer encoding for BinaryDataProvider
[CXF-4768] - Refact SwaOutInterceptor for more compatible JAXB Impl usage
[CXF-4777] - Allow providing CXF compiler instance to be used in WSDLToJava
[CXF-4798] - Allow CachedWriter and CachedOutputStream to be configured using the same set of properties
[CXF-4799] - Parameterized Classes should be automatically added to JAXBContext
[CXF-4800] - Exception mapper on the client in case of method Response retun value
[CXF-4825] - Remove static JAX-RS API calls from within JAX-RS server and client runtimes
[CXF-4827] - Move WADL auto-generator into its own module
[CXF-4829] - Add OperationInfo based authorization interceptor
[CXF-4839] - WSDL parser error not logged
[CXF-4840] - add more optional Import-Package for cxf-rt-transports-http module
[CXF-4849] - WebClient needs to support JAX-RS 2.0 GenericType
[CXF-4854] - Load the STS war on startup
[CXF-4857] - Workaround for Socket Closed exception with some JDK 1.6.0_nn (>= 38)
[CXF-4896] - Reduce reflection usage during java-first endpoint creation
[CXF-4900] - Provide options to control the cxf bus's interaction with osgi-service based features and lifecycle listeners
[CXF-4915] - JAX-RS HttpHeaders implementations creates too many maps
[CXF-4926] - remove org.apache.activemq.activemq-core as Require-Bundle from wsn-core module
[CXF-4959] - Support hierarchical mimetypes
[CXF-4966] - KerberosClient does not need the cxf Bus but it is required in the constructor
[CXF-4968] - Add an option to limit the number of active sequences that are created at WS-RM endpoints
[CXF-4971] - JSONProvider should be able to drop a root dynamically
[CXF-4972] - Move Retryable invoke method out of WebClient interface
[CXF-4974] - CXF JAX-RS Client interface should support close() calls similarly to frontend Client
[CXF-4997] - Skip PolicyBasedWSS4JInInterceptor processing when AssertionInfoMap not available
[CXF-4998] - JAXRSClientFactory: Missing factory method for username+password and providers
[CXF-5039] - IdentityMapping support in ClaimsManager
[CXF-5049] - Support for schema compiler options in DynamicClientFactory
[CXF-5053] - JAX-RS behavior differs from JAX-WS for MessageContext.get( Message.class.getName() )
[CXF-5055] - Support Clients pre-registering scopes and OOB response in OAuth2 Authorization Flow
[CXF-5069] - Create utility caching MessageBodyWriter and MessageBodyReader
[CXF-5075] - Support for chain trust validation
[CXF-5076] - Improved handling of certificate repositories, added integration tests
[CXF-5081] - FIQL - use custome query param name instead of default _s
[CXF-5088] - Make the service file of cxf-core.jar Web Application Server friendly
[CXF-5101] - Add more options for validating the search values
[CXF-5121] - Refactor rt security for better readability
[CXF-5130] - Update WebClient to provide a link to SyncInvoker
[CXF-5139] - Support FIQL expressions containing single equals operator
[CXF-5140] - Support typed JAXRS proxies
[CXF-5148] - can't use property place holder in http:server|http:client with blueprint
[CXF-5150] - Support to load the HttpClient conduit when the address is started with "hc://"
[CXF-5151] - WSDLGetInterceptor supports GZIP encoding
[CXF-5153] - Consider updating ServletController to disable address overwrites by default
[CXF-5162] - OAuth2 AccessTokenService should validate if Client supports a given grant
[CXF-5165] - add a JAAS authenticator for ServiceListPage
[CXF-5173] - Allow to enable or disble xkrss Operations for xkms
[CXF-5179] - Add optional id field to UserSubject
[CXF-5180] - Adding RefreshToken as token type
[CXF-5187] - Use a negative value of maxRetries to indicate unbounded retries in WS-RM
[CXF-5209] - Support for OAuth2 audience parameter
[CXF-5212] - Context Injection with Spring AOP
[CXF-5239] - Support OAuth2 Transient Client Secret Extension
[CXF-5253] - Update JPA visitor to use a strict match for Strings unless they have wildcards or a user property enables a wildcard match
[CXF-5274] - WS-RM should provide application access to acknowledgments
[CXF-5281] - Netty Http Server should enable the reuseAddress option
[CXF-5290] - jaxb's databinding to support an option to not include specific namespace declarations when marshaling
[CXF-5300] - Support mapping of exceptions thrown from CXF interceptors to JAX-RS Response
[CXF-5301] - JSONProvider should add an array key for root if arrayKeys is not empty but top level array has to be produced
[CXF-5312] - cxf-rt-security does not work with joda time 2.x
[CXF-5313] - Use different log levels for sts LoggerListener
[CXF-5314] - JAX-RS client runtime needs to optionally support CXF inFaultInterceptors
[CXF-5319] - WADLGenerator should not need "ignoreMessageWriters" property disabled to produces JSON
[CXF-5323] - [cxf-rt-core] remove geronimo-javamail_1.4_spec dependency
[CXF-5342] - Letting to be absolute XSISchemaNamespace
[CXF-5375] - xjc-javadoc plugin for generating more javadocs from xsd:documentation
[CXF-5399] - JAX-RS CXF Client interface should support a query method
[CXF-5400] - SearchContext should propagate parsing exceptions by default
[CXF-5401] - Better support for validating the entities wrapped in JAX-RS Response
[CXF-5402] - Cannot report customized error back from loginHandler to ResourceOwnerGrantHandler
New Feature:
[CXF-4139] - WS-RM needs support for WS-ReliableMessagingPolicy 1.2
[CXF-4464] - Support ClaimsHandler per realm
[CXF-4756] - Introduce @FaultAction annotation to specify WSA Action for Faults
[CXF-4791] - Passing arguments to JAXB compiler from WADL2Java
[CXF-4828] - Support SAML Bearer assertions for OAuth2 client authorization
[CXF-4936] - (PATCH) Expose FastInfoset serializer tuning properties
[CXF-4994] - Support LDAP groups as claim
[CXF-5001] - Support XKMS 2.0
[CXF-5010] - Add customizable request logging capability to STS
[CXF-5080] - Introduce CXFBlueprintServlet
[CXF-5135] - Implement JAX-RS 2.0 Fluent Client API
[CXF-5308] - Support Bean Validation API
[CXF-5333] - Feature to allow you to dynamically change the trustManager on CXF
[CXF-5379] - introduce cxf swagger feature
Task:
[CXF-4696] - Move CXF JAX-RS client API implementation to its own module
[CXF-4743] - Update to javax.ws.rs m15 API
[CXF-4744] - Upgrade to Jettison 1.3.3
[CXF-4783] - Provide default OAuth2 MAC token nonce verifier
[CXF-4804] - Remove CXF JAX-RS ParameterHandler extension
[CXF-4822] - Update selection algorithm to check all root resources with the same root path
[CXF-4830] - Upgrade to JAX-RS 2.0 API m16
[CXF-4845] - Upgrade to JAX-RS 2.0 API rc1
[CXF-4865] - Upgrade to wsdl4j-1.6.3
[CXF-4871] - Add -clientjar flag to wsd2java tool
[CXF-4882] - Remove CXF JAX-RS filter extensions
[CXF-4883] - OAuth2 RedirectionBasedService needs to do only a strict comparison of redirect URI
[CXF-4884] - Remove CXF JAX-RS form extension
[CXF-4889] - Upgrade to JAX-RS 2.0 API rc2
[CXF-4923] - Upgrade to JAX-RS 2.0 API rc3
[CXF-4950] - Support 'qs' media type parameters
[CXF-4988] - JAX-RS Provider improvements
[CXF-5007] - Updates to various JAX-RS API class implementations
[CXF-5060] - Add OAuth2 TokenRevocation service endpoint
[CXF-5090] - Update Jettison version to 1.3.4
[CXF-5122] - HTTPConduit should optionally be able to restrict redirects to same host and support relative redirects
[CXF-5134] - Upgrade to ehcache 2.7.2
[CXF-5142] - Simplify running JAXWS client with security manager on
[CXF-5163] - Support marshall exception class with @XmlAccessorOrder in JAXBEncoderDecoder
[CXF-5171] - Upgrade maven plugins to support both maven 3.0 and 3.1
[CXF-5315] - JAX-RS ParamConverters need to be checked first
[CXF-5355] - Investigate if WadlGenerator can handle XmlType-only and XmlSeeAlso beans
Test:
[CXF-4761] - ensure CXF follow jaxws spec 3.6.2.3
Wish:
[CXF-5236] - Make UserSubject, Client, AccessToken, .... Serializable

New in Apache CXF 2.7.0 (Oct 11, 2012)

New in Apache CXF 2.2.8 (Jun 4, 2010)

Bug:
[CXF-2630] - JmsConfiguration with custom TaskExecutor with Spring 3.0 => NoSuchMethodError
[CXF-2695] - NullPointerException when reading a soap encoded struct with a nested element that's nil
[CXF-2714] - SupportingToken UsernameToken is always encrypted
[CXF-2724] - Relative schema location import fails on Windows machines
[CXF-2728] - CXF-1977 is still valid for CXF 2.2.7
[CXF-2729] - Cannot enable JMX extensions for Jetty through Jetty HTTP Transport in OSGi
[CXF-2730] - Servlet controller is not updated after ApplicationContext refresh with Spring 3
[CXF-2731] - NPE when using wsdl2js
[CXF-2732] - DocLiteralInInterceptor on unmarshal the first message part when uisng SourceDataBinding
[CXF-2733] - MultipleEndpointObserver does not set the exchange on the incoming Message in onMessage method
[CXF-2739] - NPE When Mapping two xsd:dates in same object with Aegis Databinding
[CXF-2740] - CXF does not unregister Endpoint MBeans for JAX-WS API published endpoints when endpoint is stopped through JAX-WS API
[CXF-2742] - CXF MBeans are not unregistered/reregistered properly on CXF Bus shutdown and restart controlled by Spring DM
[CXF-2743] - java2ws generates date into *.xjb header --> causign change where there is no change
[CXF-2744] - Schema redefine element does not have its schemaLocation rewritten
[CXF-2748] - Unmarshalling error when using fastinfoset
[CXF-2752] - Regression - CXF Client Spring Context Fails
[CXF-2761] - JavaScript variable "item" wont be reinitialized
[CXF-2763] - Maven plugin extendedSoapHeaders option not under defaultOptions
[CXF-2765] - Schema location import fails if there is space in the file path
[CXF-2767] - Unable to handle schema location with spaces and serve up WSDL URL with unencoded spaces
[CXF-2768] - Temporary files are not deleted for requests >64kb when using LoggingInInterceptor
[CXF-2773] - should specify version range for net.sf.cglib optional import
[CXF-2780] - Wrong soap fault code thrown on network connection failure
[CXF-2781] - Charset encoding other than UTF-8 (as ISO-8859-1) not working
[CXF-2784] - URIBuilder does not expand template variables in query parameters.
[CXF-2785] - Base64Utils.decode should handle/wrap all exception types.
[CXF-2786] - ws-rm Proxy should send SequenceAcknowledgement according to AcksTo URI header
[CXF-2787] - CXF Extension bit @QueryParam("") does not allow null values in the bean
[CXF-2792] - Custom Executor for Service object is ignored by the CXF JAX-WS run-time when Disaptch.invokeAsync is used
[CXF-2798] - WS-addressing action not picked up on wrapped style operations
[CXF-2799] - ant client-servlet doesn't work for wsdl-first demo anymore
[CXF-2801] - WebClient back() operation doesn't clear query parameters
Improvement:
[CXF-2639] - Expose Cryptographic coverage checking code from PolicyBasedWSS4JInInterceptor in a non-WS-Policy based interceptor
[CXF-2723] - CLONE -Allow configuration of JaxWsClientFactoryBean during port creation
[CXF-2727] - NullPointerException at org.apache.cxf.transport.TransportURIResolver when the WSDL is not found instead of an exception with a useful message
[CXF-2745] - Add ability to define custom TimeToLive value for WSSecTimestamp
[CXF-2753] - Need a way to preserve parameters wrapper in DocLiteralInInterceptor
[CXF-2755] - Add a utility AuthorizationInInterceptor which can check if current SecurityContext matches expected roles
[CXF-2771] - Jetty-HTTP Transport Jetty JMX support causes MBean name collisions
[CXF-2790] - ws-rm example server side configuration contain unnecessary DecoupledEndpoint configuration
[CXF-2804] - Allow ability to reset values in ResponseTimeCounter
New Feature:
[CXF-2751] - Slf4jLogger
[CXF-2793] - Provide capability for JMS client to specify separate ReplyTo queue and listener queue
Task:
[CXF-2802] - The ws-rm example should also be deployable in Tomcat