The 1.2.1 release is our latest release. For more information please see the release notes.
The 1.1.3 release is our latest patch release of 1.1.x. For more information please see the release notes (and the migration guide from Fediz 1.0.x).
When downloading from a mirror please check the MD5 and SHA1 checksums as well as verifying the OpenPGP compatible signature available from the main Apache site. The KEYS file contains the public keys used for signing release. It is recommended that a web of trust is used to confirm the identity of these keys.
You can check the OpenPGP signature with:
gpg --verify apache-fediz-*.zip.asc
You can check the MD5 checksum with:
md5sum --check apache-fediz-*.zip.md5
You can check the SHA1 checksum with:
sha1sum --check apache-fediz-*.zip.sha1
Previous releases are all archived in the apache archive: http://archive.apache.org/dist/cxf/fediz
Warning about snapshots
These are snapshot builds - untested builds provided for your convenience. They have not been tested, and are not official releases of the Apache CXF Fediz project or the Apache Software Foundation.
Maven 2 Repositories
If you use Maven 2 for building your applications, Apache CXF Fediz artifacts are available from the following repository URLS:
All supported CXF releases are synced into the Maven central repository: http://repo1.maven.org/maven2/
Snapshots are available in Apache's Maven snapshot repository: http://repository.apache.org/snapshots