org.opensaml:xmltooling:1.3.2-redhat-2 has dependency on org.apache.commons.ssl:not-yet-commons-ssl, it was present in maven repo zip in ER3: 610ER3/jboss-eap-6.1.0.Beta1-maven-repository/org/apache/commons/ssl/not-yet-commons-ssl org.opensaml:xmltooling:1.3.2-redhat-2 is needed because of BZ https://bugzilla.redhat.com/show_bug.cgi?id=948701 as org.opensaml:opensaml:2.5.1-redhat-1 dependency. Please add org.apache.commons.ssl:not-yet-commons-ssl artifact back to maven repo zip
Excluded from dependency tree of jbossws-cxf-client. Built in version 4.1.3.Final-redhat-3. Available in EAP 6.1.0 ER 6.
Verified on EAP 6.1.0 ER6 org.apache.commons.ssl artifact is not required by jbossws-cxf-client
Details inside vpn: https://post-office.corp.redhat.com/mailman/private/eap-pm-list/2013-July/msg00105.html