v1.5.0

• #163 - New BasicSignatureOptions class that replaces BasicSignatureOptionsProvider, which becomes deprecated.
• #72 - Support including the full certificate chain in KeyInfo. Controlled via BasicSignatureOptions.
• #157 - Fix issuer DN comparison failure due to different keys on name components (e.g. "E" vs. OID). Allow registration of custom symbols for DNs (experimental).
• #74 - Support presence of C14N transforms on the SignatureValue reference when validating the CounterSignature property:

v1.4.1

#131 - Use Apache's JCEMapper to translate algorithm URIs to JCE names.
#129 - Support for qualifiers on CommitmentType
#135 - Fix NullPointerException when processing SigPolicyQualifiers
#152 - Support BMPString (non UTF-8) DNs

v1.4.0

• #105 - Allow specifying a validation date in SignatureSpecificVerificationOptions (for signatures not covered by timestamps).
• #43 - Include subject name and issuer/serial on KeyInfo when signing certificate is included.
• #63 - Add "description" to ObjectIdentifier.
• #108 - Allow usage of Apache Santuario's secure validation.
• #108 - Add explicit C14N to KeyInfo and SignedSignatureProperties (same as used for the signature).
• #116 - Fix lookup of CounterSignature elements (documents with more than 1 counter signature).
• #113 - Update Santuario to 2.0.9 (fix identification of C14N algorthms).
• Update Bouncy Castle to 1.56.

v1.3.2

• Fix wrong data object reference mapping when the signing certificate is signed (bug report)
• Support namespaces on XPath and XPath2Filter transforms
• Update Apache Santuario and Bouncy Castle dependencies
• Binaries

v1.3.1

• Search all the X09Data elements for signing certificate related data
• Timestamp token validation: use all the certificates on the token to validate the TSA certificate
• Support additional data objects on counter signatures
• Minor bug fixes and docs improvements
• Javadocs | Binaries