Apache Rampart - Axis2 Security Module

Welcome to Apache Rampart

Apache Rampart™ is the security module of Axis2. It secures SOAP messages according to specifications in the WS-Security stack. Rampart implements the following specifications:

  • WS - Security 1.0

  • WS - Security 1.1

  • WS - Secure Conversation - February 2005

  • WS - Security Policy - 1.1 - July 2005

  • WS - Security Policy - 1.2

  • WS - Trust - February 2005

  • WS - Trust - WS-SX spec - EXPERIMENTAL


Apache Rampart, Rampart, Apache, the Apache feather logo, and the Apache Rampart project logo are trademarks of The Apache Software Foundation.

Apache Rampart News

April 26, 2012 : Apache Rampart 1.6.2 released

Apache Rampart 1.6.2 is a maintenance release that update WSS4J to version 1.6.4 and OpenSAML to version 2.5.1. Apache Rampart 1.6.2 ensure compatibility with the latest Axis2 1.6.2 release.

Sep 24, 2011 : Apache Rampart 1.5.2 and 1.6.1 released

Both releases update WSS4J to version 1.5.12 and ensure compatibility with the latest Axis2 releases from the corresponding branches. Rampart 1.5.2 is supported with Axis2 1.5.6 and Rampart 1.6.1 is supported with Axis2 1.6.1. Please note that Rampart 1.6.1 will not work with Axis2 1.6.0 and that users of Axis2 1.6.1 are required to update to Rampart 1.6.1, i.e. Rampart 1.6.0 doesn't work with Axis2 1.6.1.

Jun 06, 2011 : Apache Rampart 1.6.0 released

Apache Rampart 1.6.0 was released with lots of bug fixes.

Jan 10, 2011 : Apache Rampart 1.5.1 released

Apache Rampart 1.5.1 was released with lots of bug fixes.

Feb 01, 2010 : Apache Rampart 1.5 released

Apache Rampart 1.5 was released with lots of bug fixes and new features.

New features include

  • SAML 2.0 support - Issuance
  • Key store caching
  • Signing / Encrypting with multiple keys
  • Tests for negative scenarios

Jun 12, 2008 : Apache Rampart 1.4 released

Apache Rampart 1.4 was released with lots of bug fixes and new features.

New features include

  • WS Security 1.1
    • Encrypted headers
    • Encrypted SHA1 references
  • WS Security Policy 1.2 support
  • WS Trust
    • Renew binding
    • Validation binding
  • New configuration options
    • Ability to plug in Custom policy validators
    • Ability to define certAlias different from username for signature
    • Ability turn off mili second precision
  • Ability to secure messages faults
  • Increased interoperability with WCF 3.5