You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@wicket.apache.org by Martijn Dashorst <da...@apache.org> on 2015/06/17 11:03:33 UTC

[ANNOUNCE] Apache Wicket 6.20.0 adds InlineImage and CSRF prevention measure

The Apache Wicket PMC is proud to announce Apache Wicket 6.20.0!

This release marks another minor release of Wicket 6. Starting
with Wicket 6 we use semantic versioning for the future development
of Wicket, and as such no API breaks are present in this release
compared to 6.0.0.

New and noteworthy
------------------

New inline image support for the new data: protocol. See
http://ci.apache.org/projects/wicket/apidocs/6.x/org/apache/wicket/markup/html/image/InlineImage.html
for more information.

Added CSRF prevention measure to Wicket. The
CsrfPreventionRequestCycleListener
(http://ci.apache.org/projects/wicket/apidocs/6.x/org/apache/wicket/protocol/http/CsrfPreventionRequestCycleListener.html)
will prevent requests coming from other origins than allowed from
performing actions. See the JavaDoc for more information on this
listener.

JQuery was upgraded to most recent version.

Using this release
------------------

With Apache Maven update your dependency to (and don't forget to
update any other dependencies on Wicket projects to the same version):

<dependency>
    <groupId>org.apache.wicket</groupId>
    <artifactId>wicket-core</artifactId>
    <version>6.20.0</version>
</dependency>

Or download and build the distribution yourself, or use our
convenience binary package

 * Source: http://www.apache.org/dyn/closer.cgi/wicket/6.20.0
 * Binary: http://www.apache.org/dyn/closer.cgi/wicket/6.20.0/binaries

Upgrading from earlier versions
-------------------------------

If you upgrade from 6.y.z this release is a drop in replacement. If
you come from a version prior to 6.0.0, please read our Wicket 6
migration guide found at

 * https://cwiki.apache.org/confluence/display/WICKET/Migration+to+Wicket+6.0

Have fun!

— The Wicket team


========================================================================

The signatures for the source release artefacts:


Signature for apache-wicket-6.20.0.zip:

-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org

iEYEABECAAYFAlV3Bd0ACgkQJBX8W/xy/UVOagCfUDHOIEONsgW3sOGJhK3lrnOu
IlsAoJPjhD/NuQ2U2HiJUDMqjQnub8LT
=ZO39
-----END PGP SIGNATURE-----

Signature for apache-wicket-6.20.0.tar.gz:

-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org

iEYEABECAAYFAlV3Bd0ACgkQJBX8W/xy/UVb3QCffnxpuIBdqFA6h7ZmBxXaVgdB
nPkAoJKVTWeoBOnDHNquVFjjNLb0GyeA
=7Pn4
-----END PGP SIGNATURE-----

========================================================================

CHANGELOG for 6.20.0:


** Bug

    * [WICKET-5790] - VariableInterpolator & #getThrowExceptionOnMissingResource
    * [WICKET-5814] - CryptoMapper clears feedback messages
    * [WICKET-5816] - Apps can't use Application.setName instead of
WicketFilter for e.g. JMX names
    * [WICKET-5822] - AjaxSelfUpdatingTimer stops working after ajax download
    * [WICKET-5834] - NPE in DefaultPropertyResolver
    * [WICKET-5835] - InlineEnclosure doesn't call child.configure()
before updating its visilbity
    * [WICKET-5837] - JUnit tests may fail because of
AbstractDefaultAjaxBehavior
    * [WICKET-5838] - Last-modified header of external markup is ignored
    * [WICKET-5841] - continueToOriginalDestination() discards new cookies
    * [WICKET-5843] - CryptoMapper doesn't work with context relative
UrlResourceReferences
    * [WICKET-5845] - AuthenticatedWebSession.get() returns a new
session with signedIn false
    * [WICKET-5850] - LazyInitProxyFactory causes NoClassDefFound
org/apache/wicket/proxy/ILazyInitProxy in case of multimodule
deployment
    * [WICKET-5851] - PackageResourceTest#packageResourceGuard test
fails under Windows
    * [WICKET-5855] - RememberMe functionality seems to be broken
after the change of the default crypt factory
    * [WICKET-5857] - PagingNavigator invalid HTML (rel attribute on span tag)
    * [WICKET-5858] - AjaxRequestTarget.focusComponent does not work
in modal window
    * [WICKET-5862] - Wicket Container visibility bug
    * [WICKET-5864] - Multipart Ajax form submit does not release the
channel in case of connection failure
    * [WICKET-5869] - Kittencaptcha doesn't calculate click
y-coordinate correctly
    * [WICKET-5870] - wicket-event-jquery.js: Wicket.Browser.isIE11()
does not return boolean
    * [WICKET-5873] - Resources served by Wicket are not compressable
    * [WICKET-5874] - WicketTester TagTester does not work as expected
when using non self closing tags
    * [WICKET-5881] - NPE in FormComponent#updateCollectionModel in
case of no converted input and unmodifiable collection
    * [WICKET-5883] - Feedback messages not cleared for
invisible/disabled form components on submit.
    * [WICKET-5887] - wicket.xsd refers to non-existing xhtml.label:attlist
    * [WICKET-5891] - Parsing of ChinUnionPay credit card should use
the first 6 characters
    * [WICKET-5893] - CookieUtils should use the original response
when saving a cookie
    * [WICKET-5895] - validateHeaders fails to detect missing
head/body (regression)
    * [WICKET-5900] - Add WicketTester support for IAjaxLink
    * [WICKET-5910] - CGLib proxy should not intercept protected methods
    * [WICKET-5911] - Re-rendering page after exception in render
phase does not call onBeforeRender()
    * [WICKET-5917] - Do not use jQuery's $ in String snippets in Java code

** Improvement

    * [WICKET-5754] - (String)ResourceModel's defaultValue could be an
IModel<String>
    * [WICKET-5823] - DefaultAuthenticationStrategy should be modified
to reduce copy/paste while extending it's functionality
    * [WICKET-5832] - Do not fail at CDI's ConversationPropagator when
running in non-http thread
    * [WICKET-5840] - WicketTester doesn't support #clickLink() for
ExternalLink component
    * [WICKET-5859] - Add Hebrew and Arabic translations
    * [WICKET-5863] - Overiding disableCaching in ServletWebResponse
is ignored when responce is buffered
    * [WICKET-5865] - AjaxEditableLabel should implement IGenericComponent
    * [WICKET-5872] - wicket extensions initializer.properties for
greek language
    * [WICKET-5875] - ComponentRenderer.renderComponent() unexpectedly
produces a WicketRuntimeException when called with a nested Component
which contains a nested wicket:message
    * [WICKET-5894] - Support *.woff2 webfonts in
SecurePackageResourceGuard as well
    * [WICKET-5901] - Leaving veil when ajax processing ends with redirect
    * [WICKET-5905] - allow listening to Ajax calls before scheduling
    * [WICKET-5921] - Provide a default implementation of
IModelComparator that always returns false

** New Feature

    * [WICKET-5827] - Allow to apply multiple Javascript / CSS compressors
    * [WICKET-5897] - Use the #isEnabled() method with validators
    * [WICKET-5918] - Create an Image component that uses the new
data: protocol (an InlineImage)
    * [WICKET-5919] - Add support for CSRF prevention

** Task

    * [WICKET-5896] - Upgrade jQuery to latest stable versions (1.11.4 & 2.1.3)

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@wicket.apache.org
For additional commands, e-mail: users-help@wicket.apache.org

Re: [ANNOUNCE] Apache Wicket 6.20.0 adds InlineImage and CSRF prevention measure

Posted by Peter Henderson <pe...@starjar.com>.

On Wed, Jun 17, 2015 at 10:03 AM, Martijn Dashorst <da...@apache.org>
wrote:

> The Apache Wicket PMC is proud to announce Apache Wicket 6.20.0!
>
>
It looks like the main wicket.apache.org site needs an update to show that
version 6.20.0 is out.


Thanks for all the hard work guys

Peter.







-- 
Peter Henderson