v4.2.3

• Inbound messages now log the certificate subject that signed the message
• Inbound messages now log the certificate subject that was used to decrypt the message
• (Peppol) The PeppolCompatibilityValidator got additional checks for AS4 Receipt consistency
• The PMode compatibility validators allow http as a protocol in all cases, not just if GlobalDebug debug mode is enabled
• (Peppol) Added an additional check, that the AS4 originalSender and finalRecipient match the SBDH Sender and Receiver
• (Peppol) The Peppol sending report in class Phase4PeppolSendingReport was extended to be able to keep the raw response in case of error
• (HR) The HR eDelivery sending report in class Phase4HREdeliverySendingReport was extended to be able to keep the raw response in case of error

Full Changelog: phase4-parent-pom-4.2.2...phase4-parent-pom-4.2.3

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.1
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.1
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.3.5
• phive 11.1.1 [Peppol only]
• phive-rules-peppol 4.1.2 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.83
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

v4.2.2

• Updated to ph-commons 12.1.1
• Updated to BouncyCastle 1.83
• (HR) Fixed certificate parsing in Phase4HREDeliveryServletMessageProcessorSPI to not do extra Base64 decoding first

Full Changelog: phase4-parent-pom-4.2.1...phase4-parent-pom-4.2.2

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.1
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.1
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.3.3
• phive 11.1.1 [Peppol only]
• phive-rules-peppol 4.1.2 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.83
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

v4.2.1

• (Peppol) The PeppolUserMessageSBDHBuilder now correctly applies the configured payloadContentID
• (HR) The HREDeliveryUserMessageSBDHBuilder now correctly applies the configured payloadContentID

Full Changelog: phase4-parent-pom-4.2.0...phase4-parent-pom-4.2.1

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.0
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.1
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.3.1
• phive 11.1.1 [Peppol only]
• phive-rules-peppol 4.1.2 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.82
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

v4.2.0

• Class AS4DecompressException is now derived from Phase4RuntimeException instead of RuntimeException
• Introduced new class Phase4IncomingException especially for inbound error handling
• Changed the internal error hadling to use the new class AS4Error instead of Ebms3Error
• All APIs that were using ICommonsList<AS4Error> are now using AS4ErrorList - breaking change
• [HR] Made sure the received check is working, by explicitly relying on the BDXR metadata provider
• Extended the interface IAS4IncomingMessageMetadata to access the HTTP response status code
• All *SendingReport classes now have getters for all fields
• [DBNAlliance] Extended the sender builder to include the possibility to retrieve the technical contact from SMP query

Full Changelog: phase4-parent-pom-4.1.1...phase4-parent-pom-4.2.0

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.0
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.0
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.3.1
• phive 11.1.0 [Peppol only]
• phive-rules-peppol 4.1.1 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.82
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

v4.1.1

• phase4 now tries to parse all messages received via HTTP, independent of the HTTP status code provided. Previously only messages using HTTP status code 2xx were parsed
• Introduced the new configuration property phase4.http.response.accept.allstatuscodes - by setting it to false phase4 will only process messages with HTTP status code 2xx as it did before

Full Changelog: phase4-parent-pom-4.1.0...phase4-parent-pom-4.1.1

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.0
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.0
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.3.0
• phive 11.1.0 [Peppol only]
• phive-rules-peppol 4.1.0 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.82
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

v4.1.0

• Updated to ph-commons 12.1.0
• Using JSpecify annotations
• [HR] Fixed check that CollaborationInfo/AgreementRef must not be present
• [HR] Fixed the mandatory check that incoming messages must have been encrypted. To the contrary - they must not be encrypted according to the HR AS4 spec.
• [HR] Using a constant payload ID and payload Mime Type text/xml (instead of application/xml)

What's Changed

• Using JSpecify nullable annotations by @phax in #345

Full Changelog: phase4-parent-pom-4.0.2...phase4-parent-pom-4.1.0

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.1.0
• ph-xsds-xmldsig 4.1.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.2.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.1.0
• ph-masterdata/ph-tenancy 8.1.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.2.0
• phive 11.1.0 [Peppol only]
• phive-rules-peppol 4.1.0 [Peppol only]
• peppol-reporting-api 4.1.0 [Peppol only]
• ph-xhe 5.1.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.82
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

phase4 4.0.2

• Updated to BouncyCastle 1.82
• Updated to wss4j 4.0.1
• Updated to peppol-commons 12.1.1
• Fixed cloning SubjectCertConstraints in signing parameters - so the annoying warning message "No Subject DN Certificate Constraints were defined. This could be a security issue" for Peppol is finally gone
• [HR] Added the new submodules phase4-profile-hredelivery, phase4-hredelivery-client and phase4-hredelivery-servlet to support the Croatian eDelivery variant

What's Changed

• Unused BC dependencies removed by @beth-soptim in #340

Full Changelog: phase4-parent-pom-4.0.1...phase4-parent-pom-4.0.2

Dependencies required:

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.0.4
• ph-xsds-xmldsig 4.0.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.1.2
• ph-oton-io/ph-oton-audit/ph-oton-security 10.0.2
• ph-masterdata/ph-tenancy 8.0.2
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.1.1
• phive 11.0.1 [Peppol only]
• phive-rules-peppol 4.0.3 [Peppol only]
• peppol-reporting-api 4.0.1 [Peppol only]
• ph-xhe 5.0.0 [DBNAlliance only]
• angus-activation 2.0.3
• angus-mail 2.0.5
• httpclient 5.5.1
• BouncyCastle 1.82
• WSS4J 4.0.1
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

phase4 4.0.1

• The usage of the configuration file phase4.properties and private-phase4.properties becomes deprecated. Use application.properties or private-application.properties instead. Support for these files will be removed in the next major release.
• [BDEW] Changed the default key identifier type for crypting. See #332 - thx @beth-soptim
• Added specfic Domibus compatibility flag, because Domibus can't handle XSD timestamp with less then 3 fraction second digits. See #335

What's Changed

• Support for WSS-717 by @beth-soptim in #332

Full Changelog: phase4-parent-pom-4.0.0...phase4-parent-pom-4.0.1

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.0.0
• ph-xsds-xmldsig 4.0.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.0.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.0.0
• ph-masterdata/ph-tenancy 8.0.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.0.1
• phive 11.0.0 [Peppol only]
• phive-rules-peppol 4.0.0 [Peppol only]
• peppol-reporting-api 4.0.0 [Peppol only]
• ph-xhe 5.0.0 [DBNAlliance only]
• angus-mail 2.0.4
• angus-activation 2.0.2
• httpclient 5.5
• BouncyCastle 1.81
• WSS4J 4.0.0
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

phase4 4.0.0

• Requires Java 17 as the minimum version
• The baseline was changed from JakartaEE 9 to JakartaEE 10
• Updated to ph-commons 12.0.0
• Updated to WSS4J 4.0.0
• Removed all deprecated methods marked for removal
• [EESPA] Removed submodule phase4-profile-eespa as GENA/EESPA members are supposed to use the Peppol Network

Full Changelog: phase4-parent-pom-3.2.2...phase4-parent-pom-4.0.0

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 12.0.0
• ph-xsds-xmldsig 4.0.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 11.0.0
• ph-oton-io/ph-oton-audit/ph-oton-security 10.0.0
• ph-masterdata/ph-tenancy 8.0.0
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 12.0.0
• phive 11.0.0 [Peppol only]
• phive-rules-peppol 4.0.0 [Peppol only]
• peppol-reporting-api 4.0.0 [Peppol only]
• ph-xhe 5.0.0 [DBNAlliance only]
• angus-mail 2.0.4
• angus-activation 2.0.2
• httpclient 5.5
• BouncyCastle 1.81
• WSS4J 4.0.0
• XMLSec 4.0.4
• Servlet API 6.0.x
• JAXB 4.0.x
• SLF4J 2.0.x

phase4 3.2.2

• Requires at least ph-web 10.5.0
• [Peppol] Added support for the Peppol PKI G3 (2025)
• [Peppol] The SMP client no longer tries a protocol upgrade to TLS automatically
• Any proxy configuration for HttpClientSettings can now differentiate between "http" and "https" target hosts

Full Changelog: phase4-parent-pom-3.2.1...phase4-parent-pom-3.2.2

• ph-bc/ph-collection/ph-commons/ph-dao/ph-datetime/ph-jaxb/ph-json/ph-scopes/ph-security/ph-settings/ph-xml 11.2.6
• ph-xsds-xmldsig 3.0.0
• ph-http/ph-httpclient/ph-mail/ph-network/ph-servlet/ph-useragent/ph-web 10.5.1
• ph-oton-io/ph-oton-audit/ph-oton-security 9.3.2
• ph-masterdata/ph-tenancy 7.0.2
• peppol-commons/peppol-id/peppol-sbdh/peppol-smp-client 11.0.6
• phive 10.1.1 [Peppol only]
• phive-rules-peppol 3.2.15 [Peppol only]
• peppol-reporting-api 3.1.0 [Peppol only]
• ph-xhe 4.0.2 [DBNAlliance only]
• angus-mail 2.0.4
• angus-activation 2.0.2
• httpclient 5.5
• BouncyCastle 1.81
• WSS4J 3.0.4
• XMLSec 3.0.6
• Servlet API 5.0.x
• JAXB 4.0.x
• SLF4J 2.0.x