Added: websites/production/struts/content/release/2.3.x/docs/version-notes-2320.html ============================================================================== --- websites/production/struts/content/release/2.3.x/docs/version-notes-2320.html (added) +++ websites/production/struts/content/release/2.3.x/docs/version-notes-2320.html Fri Nov 21 09:30:05 2014 @@ -0,0 +1,174 @@ + + + + + + + + + + + + + + + + + + + Version Notes 2.3.20 + + + + + + + +
+  Home > Guides > Migration Guide > Version Notes 2.3.20 + +
+ + + + + + +
+
+ +
+ + +
+
+

(tick) These are the notes for the Struts 2.3.20 distribution.

(tick) For prior notes in this release series, see Version Notes 2.3.16.1

  • If you are a Maven user, you might want to get started using the Maven Archetype.
  • Another quick-start entry point is the blank application. Rename and deploy the WAR as a starting point for your own development.
Maven Dependency
+ +

You can also use Struts Archetype Catalog like below

Struts Archetype Catalog
+ +
Staging Repository
+ +

Internal Changes

  • (warning) Merged security fixes from version 2.3.16.1, 2.3.16.2, 2.3.16.3
  • (warning) Extended existing security mechanism to block access to given Java packages and Classes, see #11 or read Internal security mechanism
  • Collection Parameters for Redir ectResults, WW-4224
  • Make ParametersInterceptor supports chinese in hash key by default, WW-4250
  • themes.properties can be loaded using ServletContext allows to put template folder under WEB-INF or on classpath, WW-4260
  • New tag datetextfield, WW-3493
  • Only valid Ognl expressions are cached, WW-4146
  • CustomTextProvider can be used for validation errors of model driven actions, WW-4202
  • datetimepicker's label fixed, WW-4254
  • PropertiesJudge removed and properties are checked in SecurityMemberAccess, WW-4257
  • resource reloading works in IBM JVM, WW-4266
  • default reloading settings were removed from default.properties, WW-4267
  • (warning) commons-fileupload library upgraded to version 1.3.1 to fix potential security vulnerability, WW-4286
  • The scheme attribute accepts expressions in s:url tag, WW-4024
  • Solves problem with infinite loop in FastByteArrayOutputStream, WW-4383
  • LocalizedTextUtil supports many ClassLoaders, WW-4379
  • Bill of Materials pom was introduced, WW-4326
  • debug=browser|console was migrated to jQuery, WW-4322
  • struts_dojo.js was fixed, WW-4349
  • interface org/apache/struts2/views/TagLibrary was restored and marked as @Depreacted, WW-4255
  • and many other small improvements, please see the release notes

 

+ Icon +
+

Please read information about new internal security mechanism introduced with this version, it can have impact on your application!

+
+
+

 

Issue Detail

Issue List

Other resources



+
+ + +
+
+ + + \ No newline at end of file