oracle
diff --git a/‎ApacheConnector-README.md‎
Lines changed: 1 addition & 1 deletion b/‎ApacheConnector-README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎CHANGELOG.md‎
Lines changed: 17 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 17 additions & 0 deletions
diff --git a/‎bmc-accessgovernancecp/pom.xml‎
Lines changed: 2 additions & 2 deletions b/‎bmc-accessgovernancecp/pom.xml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎bmc-addons/bmc-apache-connector-provider/pom.xml‎
Lines changed: 2 additions & 2 deletions b/‎bmc-addons/bmc-apache-connector-provider/pom.xml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎bmc-addons/bmc-graalvm-addon/pom.xml‎
Lines changed: 6 additions & 6 deletions b/‎bmc-addons/bmc-graalvm-addon/pom.xml‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎bmc-addons/bmc-graalvm-addon/src/main/java/com/oracle/bmc/graalvm/SdkAutomaticFeatureMetadata.java‎
Lines changed: 1 addition & 0 deletions b/‎bmc-addons/bmc-graalvm-addon/src/main/java/com/oracle/bmc/graalvm/SdkAutomaticFeatureMetadata.java‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎bmc-addons/bmc-oke-workload-identity/pom.xml‎
Lines changed: 5 additions & 5 deletions b/‎bmc-addons/bmc-oke-workload-identity/pom.xml‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎bmc-addons/bmc-oke-workload-identity/src/main/java/com/oracle/bmc/auth/okeworkloadidentity/OkeWorkloadIdentityAuthenticationDetailsProvider.java‎
Lines changed: 41 additions & 8 deletions b/‎bmc-addons/bmc-oke-workload-identity/src/main/java/com/oracle/bmc/auth/okeworkloadidentity/OkeWorkloadIdentityAuthenticationDetailsProvider.java‎
Lines changed: 41 additions & 8 deletions
diff --git a/‎bmc-addons/bmc-oke-workload-identity/src/main/java/com/oracle/bmc/auth/okeworkloadidentity/internal/OkeWorkloadIdentityResourcePrincipalsFederationClient.java‎
Lines changed: 12 additions & 15 deletions b/‎bmc-addons/bmc-oke-workload-identity/src/main/java/com/oracle/bmc/auth/okeworkloadidentity/internal/OkeWorkloadIdentityResourcePrincipalsFederationClient.java‎
Lines changed: 12 additions & 15 deletions
diff --git a/‎bmc-addons/bmc-resteasy-client-configurator/pom.xml‎
Lines changed: 2 additions & 2 deletions b/‎bmc-addons/bmc-resteasy-client-configurator/pom.xml‎
Lines changed: 2 additions & 2 deletions
@@ -180,7 +180,7 @@ An example of configuring a proxy can be found [here](https://github.com/oracle/
 calling close on the stream object if doing partial read or if not reading at all. If the stream is read completely, then the SDK will try to
 auto-close the stream to release the connection from the connection pool. 
 To manually close the stream in case of partial read of stream/no read. Please call close on the stream.
-For example - `GetObjectReponse.getInputStream().close()` or
+For example - `GetObjectResponse.getInputStream().close()` or
 use try-with-resources. Otherwise, a partial read without closing will lead to the connection not being released from 
 the pool and results in hanging for an indefinite time.
 
 
@@ -3,6 +3,23 @@ All notable changes to this project will be documented in this file.
 
 The format is based on [Keep a Changelog](http://keepachangelog.com/).
 
+## 2.66.0 - 2023-06-27
+### Added
+- Support for calling Oracle Cloud Infrastructure services in the eu-frankfurt-2 region
+- Support for the OS Management Hub service
+- Support for changing the key store type, and rotating keys, on Exadata Cloud at Customer in the Database service
+- Support for launching VM database systems using Ampere A1 shapes in the Database service
+- Support for additional currencies and countries on paid listings in the Marketplace service
+- Support for ECPU integration in the License Manager service
+- Support for freeform and defined tags on resources in the Generic Artifacts service
+- Support for SQL endpoints in the Data Flow service
+- Support for setting replication delays on channels in the MySQL Database service
+- Support for setting how channels handle replicated tables with no primary key in the MySQL Database service
+- Support for SQL Plan Management (SPM) in Database Management service
+ 
+### Breaking Changes
+- Support for retries by default on operations of the Generic Artifacts service
+
 ## 2.65.1 - 2023-06-20
 ### Added
 - Support for serial console access in the Database service
 
@@ -4,7 +4,7 @@
   <parent>
     <groupId>com.oracle.oci.sdk</groupId>
     <artifactId>oci-java-sdk</artifactId>
-    <version>2.65.1</version>
+    <version>2.66.0</version>
     <relativePath>../pom.xml</relativePath>
   </parent>
   <artifactId>oci-java-sdk-accessgovernancecp</artifactId>
@@ -15,7 +15,7 @@
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-common</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
     </dependency>
   </dependencies>
 </project>
@@ -4,7 +4,7 @@
   <parent>
     <groupId>com.oracle.oci.sdk</groupId>
     <artifactId>oci-java-sdk-addons</artifactId>
-    <version>2.65.1</version>
+    <version>2.66.0</version>
     <relativePath>../pom.xml</relativePath>
   </parent>
 
@@ -18,7 +18,7 @@
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-common</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
     </dependency>
   </dependencies>
 </project>
@@ -4,7 +4,7 @@
   <parent>
     <artifactId>oci-java-sdk-addons</artifactId>
     <groupId>com.oracle.oci.sdk</groupId>
-    <version>2.65.1</version>
+    <version>2.66.0</version>
     <relativePath>../pom.xml</relativePath>
   </parent>
   <artifactId>oci-java-sdk-addons-graalvm</artifactId>
@@ -132,30 +132,30 @@
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-common</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
     </dependency>
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-objectstorage-extensions</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
       <scope>test</scope>
     </dependency>
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-identity</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
       <scope>test</scope>
     </dependency>
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-objectstorage-extensions</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
       <scope>test</scope>
     </dependency>
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-core</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
       <scope>test</scope>
     </dependency>
   </dependencies>
 
@@ -98,6 +98,7 @@
     "com.oracle.bmc.opsi.SdkClientsMetadata",
     "com.oracle.bmc.optimizer.SdkClientsMetadata",
     "com.oracle.bmc.osmanagement.SdkClientsMetadata",
+    "com.oracle.bmc.osmanagementhub.SdkClientsMetadata",
     "com.oracle.bmc.ospgateway.SdkClientsMetadata",
     "com.oracle.bmc.osubbillingschedule.SdkClientsMetadata",
     "com.oracle.bmc.osuborganizationsubscription.SdkClientsMetadata",
 
@@ -4,7 +4,7 @@
     <parent>
         <artifactId>oci-java-sdk-addons</artifactId>
         <groupId>com.oracle.oci.sdk</groupId>
-        <version>2.65.1</version>
+        <version>2.66.0</version>
     </parent>
     <modelVersion>4.0.0</modelVersion>
 
@@ -38,24 +38,24 @@
         <dependency>
             <groupId>com.oracle.oci.sdk</groupId>
             <artifactId>oci-java-sdk-common</artifactId>
-            <version>2.65.1</version>
+            <version>2.66.0</version>
         </dependency>
         <dependency>
             <groupId>com.oracle.oci.sdk</groupId>
             <artifactId>oci-java-sdk-core</artifactId>
-            <version>2.65.1</version>
+            <version>2.66.0</version>
             <scope>test</scope>
         </dependency>
         <dependency>
             <groupId>com.oracle.oci.sdk</groupId>
             <artifactId>oci-java-sdk-identity</artifactId>
-            <version>2.65.1</version>
+            <version>2.66.0</version>
             <scope>test</scope>
         </dependency>
         <dependency>
             <groupId>com.oracle.oci.sdk</groupId>
             <artifactId>oci-java-sdk-keymanagement</artifactId>
-            <version>2.65.1</version>
+            <version>2.66.0</version>
             <scope>test</scope>
         </dependency>
         <dependency>
 
@@ -8,10 +8,13 @@
 import com.oracle.bmc.auth.AbstractFederationClientAuthenticationDetailsProviderBuilder;
 import com.oracle.bmc.auth.AbstractRequestingAuthenticationDetailsProvider;
 import com.oracle.bmc.auth.AuthCachingPolicy;
+import com.oracle.bmc.auth.DefaultServiceAccountTokenProvider;
 import com.oracle.bmc.auth.ProvidesConfigurableRefresh;
 import com.oracle.bmc.auth.RefreshableOnNotAuthenticatedProvider;
 import com.oracle.bmc.auth.RegionProvider;
+import com.oracle.bmc.auth.ServiceAccountTokenSupplier;
 import com.oracle.bmc.auth.SessionKeySupplier;
+import com.oracle.bmc.auth.SuppliedServiceAccountTokenProvider;
 import com.oracle.bmc.auth.internal.FederationClient;
 import com.oracle.bmc.auth.okeworkloadidentity.internal.OkeTenancyOnlyAuthenticationDetailsProvider;
 import com.oracle.bmc.auth.okeworkloadidentity.internal.OkeWorkloadIdentityResourcePrincipalsFederationClient;
@@ -58,12 +61,14 @@ public class OkeWorkloadIdentityAuthenticationDetailsProvider
      */
     private final Region region;
 
-    /**
-     * Path for reading Kubernetes service account cert.
-     */
-    private static final String KUBERNETES_SERVICE_ACCOUNT_CERT_PATH =
+    /** Default path for reading Kubernetes service account cert. */
+    private static final String DEFAULT_KUBERNETES_SERVICE_ACCOUNT_CERT_PATH =
             "/var/run/secrets/kubernetes.io/serviceaccount/ca.crt";
 
+    /** Environment variable of the path for Kubernetes service account cert. */
+    private static final String KUBERNETES_SERVICE_ACCOUNT_CERT_PATH_ENV =
+            "OCI_KUBERNETES_SERVICE_ACCOUNT_CERT_PATH";
+
     private static final Logger LOG =
             org.slf4j.LoggerFactory.getLogger(
                     OkeWorkloadIdentityResourcePrincipalsFederationClient.class);
@@ -139,6 +144,12 @@ public static class OkeWorkloadIdentityAuthenticationDetailsProviderBuilder
          */
         private CircuitBreakerConfiguration circuitBreakerConfig;
 
+        private ServiceAccountTokenSupplier serviceAccountTokenSupplier;
+
+        public OkeWorkloadIdentityAuthenticationDetailsProviderBuilder() {
+            this.serviceAccountTokenSupplier = new DefaultServiceAccountTokenProvider();
+        }
+
         /**
          * Configures the tenancyId to use. Used for constructing KeyPairAuthenticationDetailsProvider, it is not used by actual.
          * @param tenancyId
@@ -158,6 +169,25 @@ public OkeWorkloadIdentityAuthenticationDetailsProviderBuilder circuitBreakerCon
             return this;
         }
 
+        /** Sets value for the kubernetes service account token */
+        public OkeWorkloadIdentityAuthenticationDetailsProviderBuilder token(String token) {
+            this.serviceAccountTokenSupplier = new SuppliedServiceAccountTokenProvider(token);
+            return this;
+        }
+
+        /** Sets value for the path of kubernetes service account token */
+        public OkeWorkloadIdentityAuthenticationDetailsProviderBuilder tokenPath(String tokenPath) {
+            this.serviceAccountTokenSupplier = new DefaultServiceAccountTokenProvider(tokenPath);
+            return this;
+        }
+
+        /** Sets the kubernetes service account token supplier */
+        public OkeWorkloadIdentityAuthenticationDetailsProviderBuilder tokenPath(
+                ServiceAccountTokenSupplier serviceAccountTokenSupplier) {
+            this.serviceAccountTokenSupplier = serviceAccountTokenSupplier;
+            return this;
+        }
+
         /**
          * Build a new OkeWorkloadIdentityAuthenticationDetailsProvider.
          *
@@ -177,12 +207,14 @@ protected FederationClient createFederationClient(SessionKeySupplier sessionKeyS
 
             // Set ca cert when talking to proxymux using https.
             SSLContext sslCtx = null;
-            if (Files.exists(Paths.get(KUBERNETES_SERVICE_ACCOUNT_CERT_PATH))) {
+            String kubernetesCaCertPath =
+                    System.getenv(KUBERNETES_SERVICE_ACCOUNT_CERT_PATH_ENV) != null
+                            ? System.getenv(KUBERNETES_SERVICE_ACCOUNT_CERT_PATH_ENV)
+                            : DEFAULT_KUBERNETES_SERVICE_ACCOUNT_CERT_PATH;
+            if (Files.exists(Paths.get(kubernetesCaCertPath))) {
                 InputStream inputStream = null;
                 try {
-                    inputStream =
-                            new FileInputStream(
-                                    Paths.get(KUBERNETES_SERVICE_ACCOUNT_CERT_PATH).toFile());
+                    inputStream = new FileInputStream(Paths.get(kubernetesCaCertPath).toFile());
                     CertificateFactory certFactory = CertificateFactory.getInstance("X.509");
                     X509Certificate certificate =
                             (X509Certificate) certFactory.generateCertificate(inputStream);
@@ -244,6 +276,7 @@ protected FederationClient createFederationClient(SessionKeySupplier sessionKeyS
             return new OkeWorkloadIdentityResourcePrincipalsFederationClient(
                     federationEndpoint,
                     sessionKeySupplier,
+                    serviceAccountTokenSupplier,
                     provider,
                     configurator,
                     circuitBreakerConfig);
 
@@ -6,6 +6,7 @@
 
 import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.ObjectMapper;
+import com.oracle.bmc.auth.ServiceAccountTokenSupplier;
 import com.oracle.bmc.auth.SessionKeySupplier;
 import com.oracle.bmc.auth.internal.AbstractFederationClient;
 import com.oracle.bmc.auth.internal.AuthUtils;
@@ -41,13 +42,12 @@ public class OkeWorkloadIdentityResourcePrincipalsFederationClient
     private static final Logger LOG =
             org.slf4j.LoggerFactory.getLogger(
                     OkeWorkloadIdentityResourcePrincipalsFederationClient.class);
-    private final String KUBERNETES_SERVICE_ACCOUNT_TOKEN_PATH =
-            "/var/run/secrets/kubernetes.io/serviceaccount/token";
     private final String AUTHORIZATION_HEADER = "Authorization";
     private final String OPC_REQUEST_ID_HEADER = "opc-request-id";
     private static final String JWT_FORMAT = "Bearer %s";
     private final String KUBERNETES_SERVICE_HOST = "KUBERNETES_SERVICE_HOST";
     private final int PROXYMUX_SERVER_PORT = 12250;
+    private final ServiceAccountTokenSupplier serviceAccountTokenSupplier;
 
     /**
      * The authentication provider to sign the internal requests.
@@ -64,6 +64,7 @@ public class OkeWorkloadIdentityResourcePrincipalsFederationClient
     public OkeWorkloadIdentityResourcePrincipalsFederationClient(
             String federationEndpoint,
             SessionKeySupplier sessionKeySupplier,
+            ServiceAccountTokenSupplier serviceAccountTokenSupplier,
             OkeTenancyOnlyAuthenticationDetailsProvider okeTenancyOnlyAuthenticationDetailsProvider,
             ClientConfigurator clientConfigurator,
             CircuitBreakerConfiguration circuitBreakerConfiguration) {
@@ -76,7 +77,7 @@ public OkeWorkloadIdentityResourcePrincipalsFederationClient(
                 okeTenancyOnlyAuthenticationDetailsProvider,
                 clientConfigurator,
                 circuitBreakerConfiguration);
-
+        this.serviceAccountTokenSupplier = serviceAccountTokenSupplier;
         this.provider = okeTenancyOnlyAuthenticationDetailsProvider;
     }
 
@@ -88,15 +89,18 @@ public OkeWorkloadIdentityResourcePrincipalsFederationClient(
      */
     @Override
     public String getSecurityToken() {
+        SecurityTokenAdapter securityTokenAdapter = getSecurityTokenAdapter();
         try {
             Duration time = Duration.ZERO;
-            if (getSecurityTokenAdapter().isValid()) {
-                time = getSecurityTokenAdapter().getTokenValidDuration().dividedBy(2);
+            if (securityTokenAdapter.isValid()) {
+                if (securityTokenAdapter.getTokenValidDuration() != null) {
+                    time = securityTokenAdapter.getTokenValidDuration().dividedBy(2);
+                }
             }
             return refreshAndGetSecurityTokenIfExpiringWithin(time);
         } catch (Exception e) {
             LOG.info("Refresh RPST token failed, use cached RPST token.", e);
-            return getSecurityTokenAdapter().getSecurityToken();
+            return securityTokenAdapter.getSecurityToken();
         }
     }
 
@@ -123,14 +127,7 @@ protected Response makeCallToOke(
     protected SecurityTokenAdapter getSecurityTokenFromServer() {
         LOG.info("Getting security token from the proxymux server");
         //Get service account token.
-        String token = null;
-        try {
-            token =
-                    new String(
-                            Files.readAllBytes(Paths.get(KUBERNETES_SERVICE_ACCOUNT_TOKEN_PATH)));
-        } catch (IOException e) {
-            throw new IllegalArgumentException("Kubernetesservice account token doesn't exist.", e);
-        }
+        String token = serviceAccountTokenSupplier.getServiceAccountToken();
 
         //Generate private/public key pair.
         KeyPair keyPair = sessionKeySupplier.getKeyPair();
@@ -182,7 +179,7 @@ protected SecurityTokenAdapter getSecurityTokenFromServer() {
             // Remove duplicated "ST$" for the token.
             String jwtToken = getOkeResourcePrincipalSessionTokenResponse.getToken().substring(3);
 
-            // Create security token based on the reponse.
+            // Create security token based on the response.
             X509FederationClient.SecurityToken securityToken =
                     new X509FederationClient.SecurityToken(jwtToken);
             return new SecurityTokenAdapter(securityToken.getToken(), sessionKeySupplier);
 
@@ -5,7 +5,7 @@
   <parent>
     <groupId>com.oracle.oci.sdk</groupId>
     <artifactId>oci-java-sdk-addons</artifactId>
-    <version>2.65.1</version>
+    <version>2.66.0</version>
     <relativePath>../pom.xml</relativePath>
   </parent>
 
@@ -25,7 +25,7 @@
     <dependency>
       <groupId>com.oracle.oci.sdk</groupId>
       <artifactId>oci-java-sdk-common</artifactId>
-      <version>2.65.1</version>
+      <version>2.66.0</version>
     </dependency>
   </dependencies>
 </project>