Releases: weblegacy/struts1
Releases · weblegacy/struts1
Version 1.5.0 Release Candidate 2
01 Mar 04:27
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Jakarta EE 9
8
5.0
3.0
4.0
3.0
2.0
Breaking changes
Changes to FileUpload handling :
Method FormFile.destroy : throws an IOException.
Method MultipartRequestHandler.elementsFile : returns HashMap<String, FormFile[];> instead Hashtable<String, List<FormFile>>
Method MockMultipartRequestHandler.elementsFile : returns HashMap<String, FormFile[];> instead Hashtable<String, List<FormFile>>
Bugs
Correct file-upload-example
Add missing "maven-release-plugin" 3.0.1
Add missing "maven-antrun-plugin" 3.1.0
Exclude "doc-files" from export-packages in "MANIFEST.MF"
Add "CVE-2008-2025 " info to "README"
JS validate email remove useless regular-expression character escape
Correct OSGi/JPMS name from integration-test-apps
Improvement
Add "versions-maven-plugin" 2.16.2 for updates reports
Security - Digester: Resolving XML external entity in user-controlled data
Fix for "CVE-2023-49735 " Apache Tiles: Unvalidated input may lead to path traversal and XXE
Fix for "CVE-2023-34396 " Apache Struts vulnerable to memory exhaustion
Add filtering for Option "text" when "filter" is set to "true"
Ensure Input-/OutputStream is closed and use try-with-resources
Fix for Apache Struts "CVE-2012-1007 " Multiple Cross Site Scripting Vulnerabilities (Sample apps)
Change cryptographic algorithm from "MD5" to "SHA-256" for token generation
Improvements in FileUpload handling
Add property "multiple" to "html:file", "html-el:file" and "nested:file"
Task
Bump "webdrivermanager" from 5.6.2 to 5.7.0
Bump "htmlunit" from 3.9.0 to 3.11.0
Bump "cargo-maven3-plugin" from 1.10.11 to 1.10.12
Bump "maven-jxr-plugin" from 3.3.1 to 3.3.2
Bump "checkstyle" from 10.12.6 to 10.14.0
Bump "junit-jupiter-api" from 5.10.1 to 5.10.2
Bump "slf4j-api", "slf4j-simple" and "jcl-over-slf4j" from 2.0.9 to 2.0.12
Bump "selenium-api" and "selenium-java" from 4.16.1 to 4.18.1
Bump "groovy" from 4.0.17 to 4.0.18
Bump "maven-failsafe/surefire-[report]-plugin" from 3.2.3 to 3.2.5
Add example for multiple-file-upload
Update "README.md" to version 1.5.0-RC2
Set Version to 1.5.0-RC2
Version 1.5.0 Release Candidate 1
28 Dec 03:32
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Jakarta EE 9
8
5.0
3.0
4.0
3.0
2.0
Breaking changes
General: Upgrade from JakartaEE 8 to JakartaEE 9 .
Upgrade servlet-api from 4.0 to 5.0.
Upgrade jsp-api from 2.3 to 3.0.
Upgrade el-api from 3.0 to 4.0.
Upgrade jsf from 2.3 to 3.0.
Upgrade jstl from 1.2 to 2.0.
All javax. -properties are renamed to jakarta. -properties
Upgrade commons-fileupload 1.5 to commons-fileupload2 2.0.0-M1:
Method FormFile.destroy : throws an IOException.
Method MultipartRequestHandler.elementsAll : returns HashMap<String, Object> instead Hashtable<String, Object>
Method MultipartRequestHandler.elementsFile : returns HashMap<String, List<FormFile>> instead Hashtable<String, Object>
Method MultipartRequestHandler.elementsText : returns HashMap<String, String[]> instead Hashtable<String, Object>
Method MockMultipartRequestHandler.elementsAll : returns HashMap<String, Object> instead Hashtable<String, Object>
Method MockMultipartRequestHandler.elementsFile : returns HashMap<String, List<FormFile>> instead Hashtable<String, Object>
Method MockMultipartRequestHandler.elementsText : returns HashMap<String, String[]> instead Hashtable<String, Object>
Bugs
Skip "bnd-maven-pluin" in integration-tests
Remove duplicate slf4j-providers in "taglib"
Correct Javadoc-warnings
Fix links in "preface"-doc
Improvement
Replace "maven-bundle-plugin" 5.1.9 with "bnd-maven-plugin" 7.0.0
Centralize Javadoc-configurations
Better Javadoc-Dependency-Links
New Servelt-Attributes for MultipartRequestHandler.ATTRIBUTE_MAX_BYTE_LENGTH_EXCEEDED and MultipartRequestHandler.ATTRIBUTE_MAX_FILE_COUNT_EXCEEDED
Task
Update minimum MAVEN-Version from 3.5.4 to 3.8.1
Bump "maven-compiler-plugin" from 3.11.0 to 3.12.1
Bump "webdrivermanager" from 5.6.1 to 5.6.2
Bump "spotbugs-annotations" from 4.8.0 to 4.8.3
Bump "htmlunit" from 3.7.0 to 3.9.0
Bump "commons-validator" from 1.7 to 1.8.0
Bump "commons-io" from 2.15.0 to 2.15.1
Bump "cargo-maven3-plugin" from 1.10.10 to 1.10.11
Bump "maven-project-info-reports-plugin" from 3.4.5 to 3.5.0
Bump "checkstyle" from 10.12.4 to 10.12.6
Bump "maven-javadoc-plugin" from 3.6.0 to 3.6.3
Bump "junit-jupiter-api" from 5.10.0 to 5.10.1
Bump "selenium-api" and "selenium-java" from 4.15.0 to 4.16.1
Bump "groovy" from 4.0.15 to 4.0.17
Bump "maven-failsafe/surefire-[report]-plugin" from 3.2.1 to 3.2.3
Bump "weld-servlet-shaded" from 3.1.9.Final to 4.0.3.Final
Change "tiles-request-servlet" to "tiles-request-jakarta-servlet" 1.0.0
Change ".gitignore"
Upgrade "fileupload" 1.5 to "fileupload2" 2.0.0-M1
Change all "javax.*"- to "jakarta.*"-namespaces and properties
Upgrade "jsf" from 2.3.18 to 3.0.5
Bump "jstl" from 1.2.7 to 2.0.0
Bump "el-api" from 3.0.3 to 4.0.0
Upgrade "jsp-api" from 2.3.6 to 3.0.0
Upgrade "servlet-api" from to 4.0.4 to 5.0.0
Use "tomcat" 10.0.27 instead 9.0.68 for integration-tests
Update "README.md" to version 1.5.0-RC1
Update documentation to version 1.5.0-RC1
Set Version to 1.5.0-RC1
Version 1.4.5
03 Nov 21:16
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Jakarta EE 8
8
4.0
2.3
3.0
2.3
1.2
Breaking changes
Upgrade commons-chain from 1.2 to 1.3.0:
Extended classes from ActionCommandBase must override the execute_ method instead of execute .
Bugs
Adapt JavaDoc-configuration
Adapt dependency-scopes like JakartaEE 8
Add "jaxb-api" and "jaxb-runtime" because JDK 11
Update issues-links in documentation
Improvement
#11 - XML Entities not handled correctlyReformat some JavaDocs
Add new property "controller.fileCountMax" due "commons-fileupload" 1.5
Add contributor and add more informations to me
Task
Set documentation-skin to "maven-fluido-skin"
Replace apache "commons-chain" 1.2 with weblegacy "commons-chain" 1.3
Rename POM-property "encoding" to "sourceEncoding"
Bump "webdrivermanager" from 5.5.3 to 5.6.1
Bump "spotbugs-annotations" from 4.7.3 to 4.8.0
Bump "junit-jupiter-api" from 5.9.1 to 5.10.0
Bump "commons-io" from 2.11.0 to 2.15.0
Bump "commons-fileupload" from 1.4 to 1.5
Bump "cargo-maven3-plugin" from 1.9.13 to 1.10.10
Bump "maven-bundle-plugin" from 5.1.7 to 5.1.9
Bump "maven-war-plugin" from 3.3.2 to 3.4.0
Bump "maven-project-info-reports-plugin" from 3.3.0 to 3.4.5
Bump "maven-pmd-plugin" from 3.17.0 to 3.21.2
Bump "maven-jxr-plugin" from 3.2.0 to 3.3.1
Bump "maven-jar-plugin" from 3.2.2 to 3.3.0
Bump "maven-source-plugin" from 3.2.1 to 3.3.0
Bump "maven-site-plugin" from 3.12.0 to 3.12.1
Bump "maven-scm-publish-plugin" from 3.2.1 to 3.1.0
Bump "maven-resources-plugin" from 3.2.0 to 3.3.1
Bump "maven-javadoc-plugin" from 3.4.0 to 3.6.0
Bump "maven-install-plugin" from 3.0.0-M1 to 3.1.1
Bump "maven-gpg-plugin" from 3.0.1 to 3.1.0
Bump "maven-enforcer-plugin" from 3.1.0 to 3.4.1
Bump "maven-deploy-plugin" from 3.0.0-M2 to 3.1.1
Bump "maven-dependency-plugin" from 3.3.0 to 3.6.1
Bump "maven-compiler-plugin" from 3.10.1 to 3.11.0
Bump "maven-clean-plugin" from 3.2.0 to 3.3.2
Bump "checkstyle" from 10.4 to 10.12.4 and adapt "struts_checks.xml"
Bump "maven-checkstyle-plugin" from 3.1.2 to 3.3.1
Bump "maven-assembly-plugin" from 3.4.1 to 3.6.0
Bump "jaxb-runtime" from 2.3.7 to 2.3.9
Bump "jakarta.faces" ("mojarra") from 2.3.18 to 2.3.21
Bump "antlr" and "antlr4-maven-plugin" from 4.11.1 to 4.13.1
Bump "slf4j-api", "slf4j-simple" and "jcl-over-slf4j" from 2.0.3 to 2.0.9
Bump "selenium-api" and "selenium-java" from 4.6.0 to 4.15.0
Bump "groovy" from 4.0.6 to 4.0.15
Bump "maven-failsafe/surefire-[report]-plugin" from 3.0.0-M7 to 3.2.1
Update "README.md" for next release
Bump "tomcat" from 9.0.68 to 9.0.82 for integration-tests
Update "htmlunit" from 2.66.0 to 3.7.0
Update documentation for version 1.4.5
Set Version to 1.4.5
Version 1.4.4
14 Nov 14:58
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Jakarta EE 8
8
4.0
2.3
3.0
2.3
1.2
Breaking changes
General: Upgrade from JavaEE 7 to JakartaEE 8 .
Upgrade servlet-api from 3.1 to 4.0.
Upgrade jsf from 2.2 to 2.3.
Bugs
Adapt JavaDoc-configuration
Adapt dependency-scopes like JakartaEE 8
Add "jaxb-api" and "jaxb-runtime" because JDK 11
Improvement
Set all XML-encodings to UTF-8
Faces-Example1 & 2: Use new CDI
Add "weld-servlet-shaded" for CDI-function for JSF 2.3
Removing the use of "myfaces"-implementation-specifics
Resolve many JDK 19 compiler-warnings
Remove compiler-warnings till JDK 17
Some updates in "README.md"
Task
Bump "jaxb-runtime" from 2.3.1 to 2.3.7 to use "jakarta"-version
Update "taglibs-standard-spec" 1.2.5 to "jakarta.servlet.jsp.jstl" 1.2.7 and change implementation from "org.apache.taglibs" to "org.glassfish.web"
Replace JSF-implementation "myfaces" 2.2.15 with "mojarra" 2.3.18
Update "javax.el-api" 3.0.0 to "jakarta.el-api" 3.0.3
Update "javax.servlet.jsp-api" 2.3.3 to "jakarta.servlet.jsp-api" 2.3.6
Update "javax.servlet-api" 3.1.0 to "jakarta.servlet-api" 4.0.4
Update "web.xml" to version 4.0
Update "README.md" for next release
Use "tomcat" 9.0.68 instead 8.5.83 for integration-tests
Update documentation for version 1.4.4
Set Version to 1.4.4
Version 1.4.3
10 Nov 15:11
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Java EE 7
8
3.1
2.3
3.0
2.2
1.2
Breaking changes
General: Upgrade from JavaEE 6 to JavaEE 7 .
Upgrade servlet-api from 3.0 to 3.1.
Upgrade jsp-api from 2.2 to 2.3.
Upgrade el-api from 2.2 to 3.0.
Upgrade jsf from 2.0 to 2.2.
Move whole org.apache.struts.mock -package to test-classes.
Bugs
Faces-Example1 & 2: Correct expired-password-processing
Correct "ValidWhenEvaluator" - undo replace generic-wildcards
Improvement
Resolve deprecated java-code in jsp's
Faces-Example2: Adaption to run with JSF 2.2
Faces-Example1 & 2: Use CDI instead "faces-config" for managed-beans
Faces-Example2: Adaption in "web.xml"
Faces-Example2: For "faces-config" use CDI
Upgrade "faces-config" to 2.2-version
Remove some "SuppressWarnings"
Replace some generic-wildcards
Move all "org.apache.struts.mock"-classes in module "core" from main into test
Task
Bump "myfaces" from 2.0.25 to 2.2.15
Bump "el-api" from 2.2.5 to 3.0.0
Bump "jsp-api" from 2.2.1 to 2.3.3
Upgrade "servlet-api" from 3.0.1 to 3.1.0
Update "README.md" for next release
Bump "webdrivermanager" from 5.3.0 to 5.3.1
Bump "selenium-api" and "selenium-java" from 4.5.3 to 4.6.0
Use "tomcat" 8.5.83 instead 7.0.109 for integration-tests
Update documentation for version 1.4.3
Set Version to 1.4.3
Version 1.4.2
03 Nov 02:30
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Java EE 6
8
3.0
2.2
2.2
2.0
1.2
Breaking changes
General: Upgrade from JavaEE 5 to JavaEE 6 .
Upgrade servlet-api from 2.5 to 3.0.
Upgrade jsp-api from 2.1 to 2.2.
Upgrade jsf from 1.2 to 2.0.
Use slf4j instead of commons-logging for all logging-tasks.
Bugs
Add "supportIncrementalBuild"-config to "maven-bundle-plugin" to resolve eclipse-warning
Resolve some jsp-warnings
Correct some javadoc-warnings
Improvement
Add section "breaking changes" to release-notes since 1.3.11
Add javadoc-links to "servlet-api", "jsp-api" and "el-api"
Adjustment of dependencies
Remove some "SuppressWarnings"
Correct typos
Standardize log variables
Adapt "tiles-config_1_*.dtd" so that DTDDoc works
New Feature
Set minimum JDK-Version to 11 for Maven-building
Replace "commons-logging" with "slf4j" and "slf4j-simple"
Task
Upgrade "web.xml"s of "apps" from 2.5 to 3.0
Bump "myfaces" from 1.2.12 to 2.0.25
Bump "jsp-api" from 2.1 to 2.2.2 and add "el-api" 2.2.5
Bump "servlet-api" from 2.5 to 3.0.1
Bump "spotbugs-annotations" from 4.7.2 to 4.7.3
Bump "groovy" from 4.0.5 to 4.0.6
Use "tomcat" 7.0.109 instead 6.0.53 for integration-tests
Bump "checkstyle" from 9.3 to 10.4
Bump "antlr" from 4.9.3 to 4.11.1
Bump "selenium-api" and "selenium-java" from 4.5.0 to 4.5.3
Bump "htmlunit" from 2.65.1 to 2.66.0
Update "README.md" for this release
Update "roadmap.xml"
Version 1.4.1
11 Oct 17:01
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
Java EE 5
8
2.5
2.1
2.1
1.2
1.2
Breaking changes
General: Upgrade from J2EE 1.4 to JavaEE 5 .
Upgrade java-version from 1.4 to 8.
Upgrade servlet-api from 2.3 to 2.5.
Upgrade jsp-api from 2.0 to 2.1.
Upgrade jsf from 1.0 to 1.2.
Upgrade jstl< from 1.0 to 1.2.
Mailreader-DAO: Move it into struts-apps and adapt documentations.
Extras: Prepare struts-extras for JPMS --> change package-names from org.apache.struts.* to org.apache.struts.extras.* .
Scripting: Replace bsf -dependency with JSR-223 (javax.script ).
Bugs
Correct "tld"-files from "faces-examples" and add documentation for them
Fix groovy-compile-error
Apps-Blank: Add missing dependency
Fix: CVE-2016-1181 and CVE-2016-1182
Fix: CVE-2015-0899 with test-cases
Fix: CVE-2014-0114 with test-cases
Some corrections in examples-app
JavaDoc: Correct links and others
Improvement
Move "struts-mailreader-dao" into "struts-apps" and adapt documentations
Use "struts-mailreader-dao" in "faces-examples"
Resolve compiler- and javadoc-warnings
Set java-version to "1.8"
Apps: JDK8 - Add generics, serialVersionID, for-each-loop, ...
Change "StringBuffer" to "StringBuilder"
Apps: HTML5-Updates
Create "package-info.java" instead of old "package.html"
Adapt "EvalHelper" to jsp 2.1 and remove "tagObject"-parameter
Add version to checkin-comment to "maven-scm-publish-plugin"
New Feature
Prepare "struts-extras" for JPMS (add "extras" to package-name)
Add "Automatic-Module-Name" to "MANIFEST.MF"-files
Replace "bsf"-dependency with JSR-223 "javax.script"
Task
Remove unused dependencies
Upgrade "spotbugs-annotations" to 4.7.2
Upgrade "junit-jupiter-api" to 5.9.1
Upgrade "apache tiles" to 3.0.8, remove JDK-1.4 support dependencies
Upgrade "antlr" to 4.10.1 and always generate grammar
Upgrade "groovy" to 4.0.5
Upgrade "jsf" ("myfaces") to 1.2.12
Upgrade "webdrivermanager" to 5.3.0
Upgrade "taglibs" to 1.2.5
Upgrade "jsp-api" to 2.1
Upgrade "servlet-api" to 2.5
Upgrade "jstl" and "taglibs.standard" to 1.1.2
Upgrade "selenium-java" to 4.5.0
Upgrade "commons-digester" to 2.1
Upgrade "htmlunit" to 2.65.1
Upgrade "commons-fileupload" to 1.4
Upgrade "commons-io" to 2.11.0
Upgrade "commons-validator" to 1.7, add old commons-validator-js from 1.4
Upgrade "commons-logging" to 1.2
Upgrade "beanutils" to 1.9.4
Upgrade "Tomcat5x" to "Tomcat6x"
Version 1.4.0
28 Jul 15:35
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
J2EE 1.4
1.4
2.3
2.0
2.0
1.0
1.0
Breaking changes
Changes
New profil dormant
Rename tour.htm to tour.html
Reformating
Replace tabs with spaces
Strip trailing spaces
Encoding-updates to UTF-8
Replace invalid UTF-8 code with space
Add missing xml-declaration and encoding
Delete .cvsignore-files
Add dependency-analyze-report
STR-2986: Add Tiles2-dependency to assembly-POM
Correct some links in site-documentation
STR-1305: Add html:label tag to output HTML label
STR-3032: Copy unaccessed messages/errors to session if redirecting
STR-3153: Adapt README.md
STR-3168: Missing dispatching-constants
STR-2740: Support for XHTML 1.1 and XHTML 2.0 etc.
STR-3153: Optional build profile for dormant subprojects
STR-2913: Message tags to expose count of messages
STR-3152: Pull common dependencies into the parent Struts 1 POM
STR-3107: Case-insensitive URI matching
STR-3111: Allow as a top-level element
STR-3078: Extend action configs by action id
STR-2499: Find required forward or throw exception
STR-3052: ImgTag missing actionId support
STR-1922: Add message parameter XML-escaping to html:messages
STR-2072: [taglib] html:option etal need title attribute
STR-1175: No inheritance of html:html xhtml="true" in included tiles
STR-3025 and STR-3094: Select input based on convention over configuration and log error when input forward does not exist
STR-3024: Added ERROR, INPUT, LOGIN, SUCCESS constants
STR-3004: Update missing 1.4 DTD
STR-2986: Build Struts 1 - Tiles 2 integration
STR-3004: Create 1.4 DTD
STR-286 and STR-1116: ActionForm populate and reset strategy
STR-3168: Add dispatching support to Controller and Action configuration
Version 1.3.11
19 Jul 21:30
Compare
Sorry, something went wrong.
No results found
JEE-Version
Java-Version
Servlet
JSP
EL
JSF
JSTL
J2EE 1.4
1.4
2.3
2.0
2.0
1.0
1.0
Breaking changes
At some very rare situations: When you use the class org.apache.struts.mock.TestMockBase : This class is moved to test-classes.
The only real breaking change is for Maven-users:
Old Maven GroupId: org.apache.strutsNew Maven GroupId: io.github.weblegacy
Changes
Change groupId from org.apache.struts to io.github.weblegacy
Update site-documentation
Delete not used navigation.xml's from FAQs and user-guide
Add again deleted preface to user-guide
Use new taglib-maven-plugin from io.github.weblegacy
Generate Assemblies in package-phase
STR-2802: Add a test case
STR-2321 and STR-2319: Compare floats and doubles
Correct html:link-Tag: params connectect with & instead &
apps/[scripting-]mailreader: Convert Canoo WebTests to Selenium IDE-tests
apps/[scripting-]mailreader: Add missing gif and remove version from index-title
Remove unnecessary taglib-definitions in faces-examples
Correct faces-examples (wrong DOCTYPEs) and activate Struts-Faces-Examples again
Remove unused import
Some corrections in src/site-docs
WW-1974 Add link to release notes form announcement. Correct link in archival copy of 1.2.7 release notes
STR-2153: Reveal the offending bean and property name when iterating
STR-1195: SelectTag should single select when "multiple" attribute equals false
STR-3191: Filter attributes
STR-2779: Better explain why invalid collection (thanks to Ralf Hauser)
STR-2904: Verify only one instance of the plugin is loaded per module
STR-2611: Cite the form name in validation exception message
Reorder language specific ActionResources-properties
STR-1809: Enhance log error message for when the Action cannot instantiate
STR-3085: Configuration post-processing via plug-ins
STR-1819: Warn if a form is not declared but later used
Skip install- and deployment-phase for integration tests
Move more property files into standard Maven resources folder
Correct html-img.jsp in apps/examples
STR-2700: Correction - Clear input stream on aborted upload (Windows only)
STR-2013: Add Spanish translations
STR-3042: Retrieve page through methods
STR-2098: Clarify FileNotFoundException depends on underlying implementation
STR-2959: File upload has 2GB limit
STR-2700: Clear input stream on aborted upload (Windows only)
STR-3068: Warn when using the classic RequestProcessor
STR-1870: Add debug log message to explain initialization strategy
STR-1870: Fail fast when definition is duplicated
STR-2924: Allow Exception key to be optional
STR-2020: Explain that NPE is caused by missing ActionServlet
STR-1638: Note that anchor cannot be standalone
STR-3150: Use Chain processing constants
STR-3119: Add root cause to thrown exceptions that do not accept root cause in the constructor
STR-2437: Standardize exception rethrows to contain root cause
STR-3121: Bump Commons Logging to 1.1.1
STR-3059: Bump Commons FileUpload to 1.2.1
STR-3152: Pull common dependencies into the parent Struts 1 POM
IT: Add refresh to Selenium-Test
IT: Update README
IT: Add WebDriverManager and activate Selenium-Test
IT: Add methods for JDK 1.7-compatibility
Convert testgen4web to Selenium integration tests
Integration-tests with JUnit5 and deploy server with cargo-function
Move TestMockBase in module core from main into test
Upgrade cargo-maven2-plugin (with dependencies) to cargo-maven3-plugin
Replace maven-antrun-plugin with maven-resources-plugin
Add/Define missing maven-plugins
Convert old jUnit-Test to jUnit5
Centralize MAVAN-Plugins-Version with PluginManagement
