The Fedora Project has announced the release of version 2.1.1 of the Fedora open-source digital repository system. In addition to the standard Fedora features built around Webservices, XML, and RDF, this release introduces the new Fedora security architecture, the Fedora Service Framework, performance improvement, and other new features and enhancements.
A major new feature of Fedora 2.1.1 is automated enforcement of access control policies using XACML (eXtensible Access Control Markup Language). Both policies can be written to permit or deny access to a Fedora repository. Also, object-specific policies can be written to control access to a particular object or its components (content or metadata items). Fedora 2.1.1 ships with a set of default repository-wide policies (which can be modified). Additionally, any number of custom policies can be written and loaded. Fedora's new security architecture provides SSL support, as well as configurable authentication (via pluggable login modules for the Tomcat servlet container). Fedora is pre-configured with a user/password file, and the option to multiplex it with an LDAP directory. Other login modules can be added.
Within the broader service framework, two new services are included in this release: a Directory Ingest service that accepts an archive of files and ingests them into a repository as digital objects with hierarchical relationships retained, and a new Fedora OAI Provider service which is configurable, supports sets, and enables harvesting of any type of datastream or dissemination of Fedora objects. To support recovery of a damaged repository, the Repository Rebuilder is introduced. This utility completely reconstitutes a Fedora repository (including all databases and indices) by crawling XML source files for Fedora digital objects that are stored on disk or restored from backup media. Fedora 2.1.1 is released under the Educational Community License (ECL).