Upgrade xmlsec to 1.4.1, since 1.4.0 has problems with UTF-8 [SWS-425]

[gregturn]

Robert Novotny opened SWS-425 and commented

Apache XML Security 1.4.0 has major problems with signed and encrypted messages containing international characters (e. g. payloads containing Czech/Slovak UTF-8-encoded characters. This renders WSS4J support unusable. Version 1.4.1 fixes these problems. See XML Security bugzilla for more details, https://issues.apache.org/bugzilla/show_bug.cgi?id=41462.

(Note that there is already a newer version 1.4.2, however I have encountered major problems with computation of digest of request messages.)

---

Affects: 1.5.4

Referenced from: commits a059ab0

[gregturn]

Arjen Poutsma commented

Unfortunately, 1.4.1 has not made it to the Maven repo yet. There is a directory for it (http://repo1.maven.org/maven2/org/apache/santuario/xmlsec/1.4.1/), but no jars...

[gregturn]

Robert Novotny commented

After a short discussion on this issue on XML Security mailing list (see http://www.nabble.com/Upload-1.4.1-and-1.4.2-to-Maven-Repo-td19387238.html), the problem was has been resolved.

JARs for 1.4.1 and 1.4.2 have been uploaded to Maven repository (http://repo1.maven.org/maven2/org/apache/santuario/xmlsec/1.4.1/).

[gregturn]

Arjen Poutsma commented

Fixed, thanks for your help!

[gregturn]

Arjen Poutsma commented

Closing old issues