prepare release v1.5.1

Using the /lookup-self to retrieve information about the current token
requires less permissions than the general /lookup API and yields the
same results, if accessible.

.github/workflows/ci-it.yml

@@ -14,11 +14,11 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        jdk: [ 17, 21 ]
+        jdk: [ 11, 17, 21 ]
-        vault: [ '1.2.0', '1.19.0' ]
+        vault: [ '1.2.0', '1.19.5' ]
         include:
           - jdk: 21
-            vault: '1.19.0'
+            vault: '1.19.5'
             analysis: true
     steps:
       - name: Checkout

.github/workflows/ci.yml

@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        jdk: [ 17, 21 ]
+        jdk: [ 11, 17, 21 ]
         include:
           - jdk: 21
             analysis: true

CHANGELOG.md

@@ -1,11 +1,10 @@
-## unreleased
+## 1.5.1 (2025-06-02)
 
-### Breaking
+### Improvements
-* Requires Java 17 or later
+* Use `lookup-self` for token check instead of `lookup` (#98) (#99)
-* Required Jackson 3
 
 ### Dependencies
-* Updated Jackson to 3.0.0
+* Updated Jackson to 2.19.0 (#97)
 
 
 ## 1.5.0 (2025-04-13)
@@ -23,6 +22,9 @@
 ### Fix
 * Fix initialization from environment without explicit port
 
+### Dependencies
+* Updated Jackson to 2.18.3 (#90)
+
 ### Test
 * Tested against Vault 1.2 to 1.19
 

README.md

@@ -40,7 +40,7 @@ Java Vault Connector is a connector library for [Vault](https://www.vaultproject
 <dependency>
     <groupId>de.stklcode.jvault</groupId>
     <artifactId>jvault-connector</artifactId>
-    <version>1.5.0</version>
+    <version>1.5.1</version>
 </dependency>
 ```
 

pom.xml

@@ -4,7 +4,7 @@
 
     <groupId>de.stklcode.jvault</groupId>
     <artifactId>jvault-connector</artifactId>
-    <version>1.5.1-SNAPSHOT</version>
+    <version>1.5.1</version>
 
     <packaging>jar</packaging>
 
@@ -33,7 +33,7 @@
         <connection>scm:git:git://github.com/stklcode/jvaultconnector.git</connection>
         <developerConnection>scm:git:git@github.com:stklcode/jvaultconnector.git</developerConnection>
         <url>https://github.com/stklcode/jvaultconnector</url>
-        <tag>HEAD</tag>
+        <tag>v1.5.1</tag>
     </scm>
 
     <issueManagement>
@@ -43,26 +43,32 @@
 
     <properties>
         <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
-        <argLine></argLine>
+        <project.build.outputTimestamp>2025-06-02T14:59:15Z</project.build.outputTimestamp>
+        <argLine />
     </properties>
 
     <dependencies>
         <dependency>
-            <groupId>tools.jackson.core</groupId>
+            <groupId>com.fasterxml.jackson.core</groupId>
             <artifactId>jackson-databind</artifactId>
-             <version>3.0.0-rc5</version>
+             <version>2.19.0</version>
+        </dependency>
+        <dependency>
+            <groupId>com.fasterxml.jackson.datatype</groupId>
+            <artifactId>jackson-datatype-jsr310</artifactId>
+            <version>2.19.0</version>
         </dependency>
 
         <dependency>
             <groupId>org.junit.jupiter</groupId>
             <artifactId>junit-jupiter</artifactId>
-            <version>5.12.1</version>
+            <version>5.13.0</version>
             <scope>test</scope>
         </dependency>
         <dependency>
             <groupId>org.mockito</groupId>
             <artifactId>mockito-core</artifactId>
-            <version>5.17.0</version>
+            <version>5.18.0</version>
             <scope>test</scope>
         </dependency>
         <dependency>
@@ -86,7 +92,7 @@
         <dependency>
             <groupId>nl.jqno.equalsverifier</groupId>
             <artifactId>equalsverifier</artifactId>
-            <version>3.19.3</version>
+            <version>3.19.4</version>
             <scope>test</scope>
         </dependency>
         <dependency>
@@ -105,7 +111,7 @@
                     <artifactId>maven-compiler-plugin</artifactId>
                     <version>3.14.0</version>
                     <configuration>
-                        <release>17</release>
+                        <release>11</release>
                     </configuration>
                 </plugin>
                 <plugin>
@@ -125,7 +131,7 @@
                     <configuration>
                         <argLine>
                             @{argLine}
-                            --add-opens de.stklcode.jvault.connector/de.stklcode.jvault.connector.test=tools.jackson.databind
+                            --add-opens de.stklcode.jvault.connector/de.stklcode.jvault.connector.test=com.fasterxml.jackson.databind
                         </argLine>
                     </configuration>
                 </plugin>
@@ -202,7 +208,7 @@
                                     <version>[3.6.3,)</version>
                                 </requireMavenVersion>
                                 <requireJavaVersion>
-                                    <version>[17,)</version>
+                                    <version>[11,)</version>
                                 </requireJavaVersion>
                             </rules>
                         </configuration>
@@ -248,7 +254,7 @@
                         <artifactId>maven-javadoc-plugin</artifactId>
                         <version>3.11.2</version>
                         <configuration>
-                            <source>17</source>
+                            <source>11</source>
                         </configuration>
                         <executions>
                             <execution>

src/main/java/de/stklcode/jvault/connector/HTTPVaultConnector.java

@@ -54,6 +54,7 @@ public class HTTPVaultConnector implements VaultConnector {
     private static final String PATH_AUTH = "auth";
     private static final String PATH_AUTH_TOKEN = PATH_AUTH + "/token";
     private static final String PATH_LOOKUP = "/lookup";
+    private static final String PATH_LOOKUP_SELF = "/lookup-self";
     private static final String PATH_CREATE = "/create";
     private static final String PATH_ROLES = "/roles";
     private static final String PATH_CREATE_ORPHAN = "/create-orphan";
@@ -191,7 +192,7 @@ public class HTTPVaultConnector implements VaultConnector {
         /* set token */
         this.token = token;
         this.tokenTTL = 0;
-        TokenResponse res = request.post(PATH_AUTH_TOKEN + PATH_LOOKUP, emptyMap(), token, TokenResponse.class);
+        TokenResponse res = request.get(PATH_AUTH_TOKEN + PATH_LOOKUP_SELF, emptyMap(), token, TokenResponse.class);
         authorized = true;
 
         return res;

src/main/java/de/stklcode/jvault/connector/internal/RequestHelper.java

@@ -1,11 +1,12 @@
 package de.stklcode.jvault.connector.internal;
 
-import tools.jackson.core.JacksonException;
+import com.fasterxml.jackson.core.JsonProcessingException;
-
+import com.fasterxml.jackson.databind.DeserializationFeature;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import com.fasterxml.jackson.databind.json.JsonMapper;
+import com.fasterxml.jackson.datatype.jsr310.JavaTimeModule;
 import de.stklcode.jvault.connector.exception.*;
 import de.stklcode.jvault.connector.model.response.ErrorResponse;
-import tools.jackson.databind.cfg.DateTimeFeature;
-import tools.jackson.databind.json.JsonMapper;
 
 import javax.net.ssl.SSLContext;
 import javax.net.ssl.TrustManagerFactory;
@@ -65,8 +66,9 @@ public final class RequestHelper implements Serializable {
         this.tlsVersion = tlsVersion;
         this.trustedCaCert = trustedCaCert;
         this.jsonMapper = JsonMapper.builder()
-            .enable(DateTimeFeature.WRITE_DATES_AS_TIMESTAMPS)
+            .addModule(new JavaTimeModule())
-            .disable(DateTimeFeature.ADJUST_DATES_TO_CONTEXT_TIME_ZONE)
+            .enable(SerializationFeature.WRITE_DATES_AS_TIMESTAMPS)
+            .disable(DeserializationFeature.ADJUST_DATES_TO_CONTEXT_TIME_ZONE)
             .build();
     }
 
@@ -87,7 +89,7 @@ public final class RequestHelper implements Serializable {
         // Generate JSON from payload.
         try {
             req.POST(HttpRequest.BodyPublishers.ofString(jsonMapper.writeValueAsString(payload), UTF_8));
-        } catch (JacksonException e) {
+        } catch (JsonProcessingException e) {
             throw new InvalidRequestException(Error.PARSE_RESPONSE, e);
         }
 
@@ -118,7 +120,7 @@ public final class RequestHelper implements Serializable {
         try {
             String response = post(path, payload, token);
             return jsonMapper.readValue(response, target);
-        } catch (JacksonException e) {
+        } catch (IOException e) {
             throw new InvalidResponseException(Error.PARSE_RESPONSE, e);
         }
     }
@@ -157,7 +159,7 @@ public final class RequestHelper implements Serializable {
         // Generate JSON from payload.
         try {
             req.PUT(HttpRequest.BodyPublishers.ofString(jsonMapper.writeValueAsString(payload), UTF_8));
-        } catch (JacksonException e) {
+        } catch (JsonProcessingException e) {
             throw new InvalidRequestException("Payload serialization failed", e);
         }
 
@@ -188,7 +190,7 @@ public final class RequestHelper implements Serializable {
         try {
             String response = put(path, payload, token);
             return jsonMapper.readValue(response, target);
-        } catch (JacksonException e) {
+        } catch (IOException e) {
             throw new InvalidResponseException(Error.PARSE_RESPONSE, e);
         }
     }
@@ -300,7 +302,7 @@ public final class RequestHelper implements Serializable {
         try {
             String response = get(path, payload, token);
             return jsonMapper.readValue(response, target);
-        } catch (JacksonException e) {
+        } catch (IOException e) {
             throw new InvalidResponseException(Error.PARSE_RESPONSE, e);
         }
     }
@@ -441,7 +443,7 @@ public final class RequestHelper implements Serializable {
                     throw new InvalidResponseException(Error.RESPONSE_CODE, response.statusCode(), er.toString());
                 }
             }
-        } catch (IOException | JacksonException ignored) {
+        } catch (IOException ignored) {
             // Exception ignored.
         }
     }

src/main/java/de/stklcode/jvault/connector/model/response/SecretResponse.java

@@ -17,12 +17,14 @@
 package de.stklcode.jvault.connector.model.response;
 
 import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import com.fasterxml.jackson.databind.DeserializationFeature;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import com.fasterxml.jackson.databind.json.JsonMapper;
+import com.fasterxml.jackson.datatype.jsr310.JavaTimeModule;
 import de.stklcode.jvault.connector.exception.InvalidResponseException;
 import de.stklcode.jvault.connector.model.response.embedded.VersionMetadata;
-import tools.jackson.core.JacksonException;
-import tools.jackson.databind.cfg.DateTimeFeature;
-import tools.jackson.databind.json.JsonMapper;
 
+import java.io.IOException;
 import java.io.Serializable;
 import java.util.Map;
 
@@ -84,8 +86,9 @@ public abstract class SecretResponse extends VaultDataResponse {
                 return type.cast(rawValue);
             } else {
                 var om = JsonMapper.builder()
-                    .enable(DateTimeFeature.WRITE_DATES_AS_TIMESTAMPS)
+                    .addModule(new JavaTimeModule())
-                    .disable(DateTimeFeature.ADJUST_DATES_TO_CONTEXT_TIME_ZONE)
+                    .enable(SerializationFeature.WRITE_DATES_AS_TIMESTAMPS)
+                    .disable(DeserializationFeature.ADJUST_DATES_TO_CONTEXT_TIME_ZONE)
                     .build();
 
                 if (rawValue instanceof String) {
@@ -94,7 +97,7 @@ public abstract class SecretResponse extends VaultDataResponse {
                     return om.readValue(om.writeValueAsString(rawValue), type);
                 }
             }
-        } catch (JacksonException e) {
+        } catch (IOException e) {
             throw new InvalidResponseException("Unable to parse response payload: " + e.getMessage());
         }
     }

src/main/java/module-info.java

@@ -26,11 +26,12 @@ module de.stklcode.jvault.connector {
     exports de.stklcode.jvault.connector.model.response;
     exports de.stklcode.jvault.connector.model.response.embedded;
 
-    opens de.stklcode.jvault.connector.model to tools.jackson.databind;
+    opens de.stklcode.jvault.connector.model to com.fasterxml.jackson.databind;
-    opens de.stklcode.jvault.connector.model.response to tools.jackson.databind;
+    opens de.stklcode.jvault.connector.model.response to com.fasterxml.jackson.databind;
-    opens de.stklcode.jvault.connector.model.response.embedded to tools.jackson.databind;
+    opens de.stklcode.jvault.connector.model.response.embedded to com.fasterxml.jackson.databind;
 
     requires java.net.http;
     requires com.fasterxml.jackson.annotation;
-    requires tools.jackson.databind;
+    requires com.fasterxml.jackson.databind;
+    requires com.fasterxml.jackson.datatype.jsr310;
 }

src/test/java/de/stklcode/jvault/connector/HTTPVaultConnectorIT.java

@@ -52,7 +52,7 @@ import static org.junit.jupiter.api.Assumptions.assumeTrue;
  * @since 0.1
  */
 class HTTPVaultConnectorIT {
-    private static String VAULT_VERSION = "1.19.0";  // The vault version this test is supposed to run against.
+    private static String VAULT_VERSION = "1.19.5";  // The vault version this test is supposed to run against.
     private static final String KEY1 = "E38bkCm0VhUvpdCKGQpcohhD9XmcHJ/2hreOSY019Lho";
     private static final String KEY2 = "O5OHwDleY3IiPdgw61cgHlhsrEm6tVJkrxhF6QAnILd1";
     private static final String KEY3 = "mw7Bm3nbt/UWa/juDjjL2EPQ04kiJ0saC5JEXwJvXYsB";