Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.

Board Report, Oltu PMC

Oltu PMC Chair: Antonio Sanso (
Date: March 2015


Oltu is a project to develop a Java library which provides an API specification for, and an unconditionally compliant implementation of the OAuth v2.0 specifications.
OAuth is a mechanism that allows users to authenticate and authorise access by another party to resources they control while avoiding the need to share their username and password credentials.


Apache Oltu 1.0 was released on March 3rd 2014.


The core part of the project related to 'The OAuth 2.0 Authorization Framework' (RFC 6749) is pretty stable due the fact RFC 6749 is now a standard.

A stable version 1.0 was released on March 3rd 2014. We have extended the coverage for the IETF JOSE specifications (that is strictly correlated to OAuth 2) as JWS ( The current intention is to extend the coverage to the JWE part.
Users activity is growing slowly but steadily (the user@ mailing list has got new messages from new users). We got some feedback from some users about our not too clear documentation. Hence we are planning to improve this area. A presentation about Apache Oltu was part of JUG Basel : "OAuth Hacks - A gentle introduction to OAuth 2 and Apache Oltu" (


PMC composition has not changed since graduation
We have voted one new committer Jasha Joachimstha in January 2015


There are no issues requiring board attention at this time.