Digital

Page tree

European Commission Digital

SMP 4.2 RC1


This page collects the resources for Service Metadata Publisher (SMP) version 4.2 RC1, released in June 2022.

Download SMP v4.2 RC1

Verify files integrity
Access source code (select tag 4.2-RC1)
SMP war
SMP Setup Bundle

Description

We are happy to announce that the first release candidate of Service Metadata Publisher (SMP) 4.2 is available. SMP is the sample implementation of an eDelivery Service Metadata Publisher (SMP) by the European Commission.

We invite all users to install SMP 4.2 RC1 in their test environments as early as possible and report any issues they encounter during the upgrade process or during operations to EC-EDELIVERY-SUPPORT@ec.europa.eu. As the final release of SMP 4.2 is scheduled for 30/06/2022, any major issues to be addressed should be reported by 16/06/2022 at the latest.

SMP 4.2 RC1 includes the following new features and fixed bugs:

  • UI user authentication using an external CAS authentication server
  • Separate UI login credentials and Rest Service (API) credentials (access tokens)
  • Extension framework: support for custom extensions for payload security verification (e.g., malware scanning)
  • Alert features: ability to send email notifications for alerts (e.g., when credentials are about to expire, failed logins, etc.)
  • Configuration properties can be now edited in the UI
  • Admin UI now accessible using a separate URL, avoiding the need to have it exposed to the Internet (e.g., it can be secured via a firewall)
  • Support for multivalued RDN certificates for authentication to SMP
  • Support for SSLClientCert header authentication (base64-encoded X.509 certificate) when authenticating the client for the Rest Service (API) via reverse proxy
  • X.509 certificate policy extension validation
  • Support for participant identifiers without the scheme
  • Logging framework: Log4J replaced by SLF4J
  • Various security enhancements

Fixed bugs:

  • Fixed the space character URLs encoding in service-group response

  • Fixed wrong ebCore party identifier serialization in XML response

  • Fixed registering redirect service metadata using the UI tools

SMP 4.2 RC1 is backward compatible with 4.1.x.

Supported platforms:

  • Application servers:
    • WebLogic 12.2.1.4 (tested version, future versions might work)
    • Apache Tomcat 8.5.x (tested version, future versions might work)
  • Database:
    • MySQL 8 (tested version, future versions might work)
    • Oracle 11xe and Oracle 19c (tested version, future versions might work)
  • Java:
    • Oracle JRE8

Documentation

Administration Guide (pdf)
The purpose of this guide is to provide detailed information on how to deploy and configure the Service Metadata Publisher.
Interface Control Document (pdf)
The purpose of this document is to exhaustively specify the interface of the Service Metadata Provider.
Software Architecture Document (pdf)
This document provides a comprehensive architectural overview of the system, using a number of different architectural views to depict individual aspects of the system.  It is intended to capture and convey the significant architectural decisions that have been made on the system.
License (pdf)
European Union Public Licence.

Migration from SMP 4.1.2 to 4.2 RC1

In order to upgrade to SMP 4.2 RC1, please follow the steps:

  • MySQL or Oracle migration scripts have to be manually executed in DB prior to re-deployment of new WAR version. Scripts are located in smp-setup.zip.

Release notes

Please find below the list of new features, improvements, solved bugs and known limitations.

Improvements and new features

  • EDELIVERY-6180: Supporting multivalued RDN certificates in SMP
  • EDELIVERY-6306: Enable external CAS authentication server with main purpose to support EU Login CAS server
  • EDELIVERY-6307: Enhance security for admin pages of the SMP console
  • EDELIVERY-6317: Uploaded files shall be scanned by antivirus software.
  • EDELIVERY-6496: Replace log "engine" Log4j with logback (sync with other eDelivery blocks) and upgrade libraries to the latest versions
  • EDELIVERY-8801: Alert management: Login failure alerts 
  • EDELIVERY-8802: Alert management: Certificate expiration alerts
  • EDELIVERY-8803: Alert management: Username/password and access token expiry alerts
  • EDELIVERY-8806: Force change password when expired
  • EDELIVERY-8984: X509 Certificate Policy extension validation
  • EDELIVERY-9011: Implement SSLClientCert authentication
  • EDELIVERY-9253: Feature to update SMP configuratuion via UI with the system admin role
  • EDELIVERY-9300: Enable creating partyIdentifier without scheme

Fixed bugs

  • EDELIVERY-6583: Problem with workaround for the GRP:SPACE test in the Metadata URL
  • EDELIVERY-8907: Wrong ebCore party identifier serialization in XML response
  • EDELIVERY-9318: Registering redirect service metadata via UI fails
  • EDELIVERY-9328: A successful message should be seen after added a trust store certificate

For more information, please contact us via our portal or by e-mail: EC-EDELIVERY-SUPPORT@ec.europa.eu