3.2. By component

JCA

JBPAPP-4539
Property substitution did not work for <min-pool-size> and <max-pool-size> in deployment descriptors. This problem has been fixed, and property substitution now works for all properties in deployment descriptors.

Hibernate

JBPAPP-5022
Class SchemaUpdate now creates indexes automatically, when property variable hibernate.hbm2ddl.auto is set to either create or update. The previous behavior was to only update when the variable was set to create.

Naming

JBPAPP-5909
A new property called ORBGracefulShutdown has been added to the iiop-service.xml file. The default value, false, retains the old behavior. A value of true causes the ORB to wait for completion of outstanding calls before it shuts down.

Seam

JBPAPP-4771
If multiple images were used on the same page, and s:graphicImage was used to do transformation on the images, page loading was sometimes slow. This has been resolved by making s:graphicImage cachable.
JBPAPP-5766
Previously, BMP images were not supported for s:graphicImage. BMP image support is now available, as content type image/bmp.

Security

JBPAPP-5882
Exposing the keystore or truststore password in JaasSecurityDomain is insecure. Two methods have been added to retrieve private keys and certificates directly from the JSD, so that they can be used by external components. These methods are getKey and getCertificate. The getKey method requires you to provide a security token.
JBPAPP-5568
The JBossWS configuration management layer could not reference a JaasSecurityDomain JNDI name, which also prevented the JBossWS security layer from accessing keystores and truststores normally exposed by the Security Domain. The JBossWS management and security layers were updated to permit alternate jboss-wsse-server.xml and jboss-wsse-client.xml files. The alternate XML files allow a JaasSecurityDomain JNDI name to be specified. The keystores and truststores for the security domain are exposed, providing greater security for JBossWS transactions.
JBPAPP-5578
Exposing the keystore or truststore password in JaasSecurityDomain is insecure. Two options have been added to retrieve private keys and certificates directly from the JSD, so that they can be used by external components. These methods are getKey and getCertificate. The getKey method requires you to provide a security token.
JBPAPP-5434
JaasSecurity Domain now includes clientAlias and serverAlias options. You can configure them in the same way as keyStoreAlias.