SML - v4.1.0 This page collects the resources for Service Metadata Locator version 4.1.0, released in February 2021.
| HTML Wrap |
|---|
| background-color | #ECECEC |
|---|
| padding | 20px |
|---|
| Download SML v4.1.0 |
Access the eDelivery videos and eLearnings| HTML Wrap |
|---|
| background-color | #ececec |
|---|
| padding | 20px |
|---|
| | Section |
|---|
| Column |
|---|
SML Video tutorial | Action Button |
|---|
| link | eDelivery videos |
|---|
| text | View all video and eLearnings |
|---|
|
|
| Column |
|---|
|
|
|
DescriptionThe Directorate-General for Informatics (DIGIT) is happy to announce the upgrade of the BDMSL, the sample implementation of the SML software in order to fully support the eDelivery SML specification. In version 4.1.x, as in version 4.0.x the BDMSL will also provide support for the eDelivery BDXL profile, as well as the PEPPOL SML specification. As the PEPPOL SML specification continues to be supported, current users of the BDMSL software shouldn't suffer of any disruption of service. The SML managed service offered by DIGIT uses this sample implementation and therefore benefits from its features. The SML 4.1.0 release includes a number of new features, improvements, and bug fixes, including: New features: - Enhancement of certificate trust validation with truststore on the back-end.
- Immediate property refresh on non-cluster environment.
- New services for administrators for managing truststore certificates.
- Option to update the Certificate also for so-called "non-root" certificates.
- Configuration option to support U-NAPTR regular expression as defined in RFC 4848 '.*' and Oasis BDXL examples '$.*^'.
- Certificate verification - Mandatory subject values CN, O, C.
- SML Issuer-Certificate based authorization - domain owners have not option to define domain specific regular expression for subject validation when authorizing SMP clients using the Issuer-Certificate based authorization.
- Update all dependent libraries to the latest versions.
- Property for configuring DNS Timeout.
Fixed bugs: - Releasing disk space after inconsistency report is generated.
- Fix typo in admin services: regularExpression instead of reqularExpression.
- Change certificate with itself creates a "deadlock" issue.
- Invalid handling of certificates with space at the end of subjects RDN.
- Deleting and creating participants if DNS timeout.
Security note: Following updated instructions provided regarding the security vulnerability affecting Log4J, a patched version of SML 4.1.0 including a version of log4j-core-2.14.0.jar without the JndiLookup class is now available here. The main link above now also links to this patched version. Migration from 4.0.2 to 4.1.0- Database migration scripts are provided in the setup bundle.
- Configure new properties in the BDMSL configuration table: authorization.domain.legacy.enabled, cert.revocation.validation.crl.protocols, cert.revocation.validation.graceful, dnsClient.use.legacy.regexp, dnsClient.tcp.timeout, sml.cluster.enabled.
- Create new truststore with all the domain certificates including the PKI chain, deploy it in the configurationFolder and set the properties truststoreFileName and truststorePassword.
Documentation| Advanced Tables - Table Plus |
|---|
| columnStyles | width:35%, width:65% |
|---|
| highlightColor | #ECECEC |
|---|
| rowStyles | border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, border-bottom: #ECECEC 2px solid, |
|---|
| columnTypes | s,s, |
|---|
| heading | 0 |
|---|
| multiple | false |
|---|
| width | 100% |
|---|
| columnAttributes | style="border:0;width:25%",style="border:0;width:25%",style="border:0;width:25%",style="border:0;width:25%",style="border:0;width:25%",style="border:0;width:25%" |
|---|
| enableSorting | false |
|---|
| enableHighlighting | false |
|---|
| | | | | | This document provides a brief description of the installation of the SML sample implementation component on a Tomcat/MySQL environment. | | This document described the services offered by the SML. | | European Union Public Licence. |
|
Release noteImprovements and new features- EDELIVERY-7600 - New services for administrators for managing truststore certificate
- EDELIVERY-7582 - Property for configuring DNS Timeout
- EDELIVERY-7599 - Immediate property refresh on non-cluster environment
- EDELIVERY-7485 - Configuration option to support U-NAPTR regular expression as defined in RFC 4848 '.*' and Oasis BDXL examples '$.*^'
- EDELIVERY-7397 - Enhancement of certificate trust validation with truststore on the back-end
- EDELIVERY-6772 - Certificate verification - Mandatory subject values CN, O, C
- EDELIVERY-6631 - SML Issuer-Certificate based authorization - domain owners have not option to define domain specific regular expression for subject validation when authorizing SMP clients using the Issuer-Certificate based authorization
- EDELIVERY-6495 - Update all dependent libraries to the latest version
- EDELIVERY-6464 - Option to update the also for so-called "non-root" certificate
Fixed Bug - EDELIVERY-7612 - Releasing disk space after inconsistency report is generate
- EDELIVERY-7601 - Fix typo in admin services: regularExpression instead of reqularExpression
- EDELIVERY-7583 - Deleting and creating participants if DNS timeout
- EDELIVERY-7016 - Change certificate with itself creates a "deadlock" issue
- EDELIVERY-6485 - Invalid handling of certificates with space at the end of subjects
Known issues and limitationsNone For more information, please contact us via our portal or by e-mail: CEFEC-EDELIVERY-SUPPORT@ec.europa.eu
|
