www-announce mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Martijn Dashorst <dasho...@apache.org>
Subject [ANNOUNCE] Apache Wicket 6.20.0 adds InlineImage and CSRF prevention measure
Date Wed, 17 Jun 2015 09:03:33 GMT
The Apache Wicket PMC is proud to announce Apache Wicket 6.20.0!

This release marks another minor release of Wicket 6. Starting
with Wicket 6 we use semantic versioning for the future development
of Wicket, and as such no API breaks are present in this release
compared to 6.0.0.

New and noteworthy

New inline image support for the new data: protocol. See
for more information.

Added CSRF prevention measure to Wicket. The
will prevent requests coming from other origins than allowed from
performing actions. See the JavaDoc for more information on this

JQuery was upgraded to most recent version.

Using this release

With Apache Maven update your dependency to (and don't forget to
update any other dependencies on Wicket projects to the same version):


Or download and build the distribution yourself, or use our
convenience binary package

 * Source: http://www.apache.org/dyn/closer.cgi/wicket/6.20.0
 * Binary: http://www.apache.org/dyn/closer.cgi/wicket/6.20.0/binaries

Upgrading from earlier versions

If you upgrade from 6.y.z this release is a drop in replacement. If
you come from a version prior to 6.0.0, please read our Wicket 6
migration guide found at

 * https://cwiki.apache.org/confluence/display/WICKET/Migration+to+Wicket+6.0

Have fun!

— The Wicket team


The signatures for the source release artefacts:

Signature for apache-wicket-6.20.0.zip:

Comment: GPGTools - https://gpgtools.org


Signature for apache-wicket-6.20.0.tar.gz:

Comment: GPGTools - https://gpgtools.org



CHANGELOG for 6.20.0:

** Bug

    * [WICKET-5790] - VariableInterpolator & #getThrowExceptionOnMissingResource
    * [WICKET-5814] - CryptoMapper clears feedback messages
    * [WICKET-5816] - Apps can't use Application.setName instead of
WicketFilter for e.g. JMX names
    * [WICKET-5822] - AjaxSelfUpdatingTimer stops working after ajax download
    * [WICKET-5834] - NPE in DefaultPropertyResolver
    * [WICKET-5835] - InlineEnclosure doesn't call child.configure()
before updating its visilbity
    * [WICKET-5837] - JUnit tests may fail because of
    * [WICKET-5838] - Last-modified header of external markup is ignored
    * [WICKET-5841] - continueToOriginalDestination() discards new cookies
    * [WICKET-5843] - CryptoMapper doesn't work with context relative
    * [WICKET-5845] - AuthenticatedWebSession.get() returns a new
session with signedIn false
    * [WICKET-5850] - LazyInitProxyFactory causes NoClassDefFound
org/apache/wicket/proxy/ILazyInitProxy in case of multimodule
    * [WICKET-5851] - PackageResourceTest#packageResourceGuard test
fails under Windows
    * [WICKET-5855] - RememberMe functionality seems to be broken
after the change of the default crypt factory
    * [WICKET-5857] - PagingNavigator invalid HTML (rel attribute on span tag)
    * [WICKET-5858] - AjaxRequestTarget.focusComponent does not work
in modal window
    * [WICKET-5862] - Wicket Container visibility bug
    * [WICKET-5864] - Multipart Ajax form submit does not release the
channel in case of connection failure
    * [WICKET-5869] - Kittencaptcha doesn't calculate click
y-coordinate correctly
    * [WICKET-5870] - wicket-event-jquery.js: Wicket.Browser.isIE11()
does not return boolean
    * [WICKET-5873] - Resources served by Wicket are not compressable
    * [WICKET-5874] - WicketTester TagTester does not work as expected
when using non self closing tags
    * [WICKET-5881] - NPE in FormComponent#updateCollectionModel in
case of no converted input and unmodifiable collection
    * [WICKET-5883] - Feedback messages not cleared for
invisible/disabled form components on submit.
    * [WICKET-5887] - wicket.xsd refers to non-existing xhtml.label:attlist
    * [WICKET-5891] - Parsing of ChinUnionPay credit card should use
the first 6 characters
    * [WICKET-5893] - CookieUtils should use the original response
when saving a cookie
    * [WICKET-5895] - validateHeaders fails to detect missing
head/body (regression)
    * [WICKET-5900] - Add WicketTester support for IAjaxLink
    * [WICKET-5910] - CGLib proxy should not intercept protected methods
    * [WICKET-5911] - Re-rendering page after exception in render
phase does not call onBeforeRender()
    * [WICKET-5917] - Do not use jQuery's $ in String snippets in Java code

** Improvement

    * [WICKET-5754] - (String)ResourceModel's defaultValue could be an
    * [WICKET-5823] - DefaultAuthenticationStrategy should be modified
to reduce copy/paste while extending it's functionality
    * [WICKET-5832] - Do not fail at CDI's ConversationPropagator when
running in non-http thread
    * [WICKET-5840] - WicketTester doesn't support #clickLink() for
ExternalLink component
    * [WICKET-5859] - Add Hebrew and Arabic translations
    * [WICKET-5863] - Overiding disableCaching in ServletWebResponse
is ignored when responce is buffered
    * [WICKET-5865] - AjaxEditableLabel should implement IGenericComponent
    * [WICKET-5872] - wicket extensions initializer.properties for
greek language
    * [WICKET-5875] - ComponentRenderer.renderComponent() unexpectedly
produces a WicketRuntimeException when called with a nested Component
which contains a nested wicket:message
    * [WICKET-5894] - Support *.woff2 webfonts in
SecurePackageResourceGuard as well
    * [WICKET-5901] - Leaving veil when ajax processing ends with redirect
    * [WICKET-5905] - allow listening to Ajax calls before scheduling
    * [WICKET-5921] - Provide a default implementation of
IModelComparator that always returns false

** New Feature

    * [WICKET-5827] - Allow to apply multiple Javascript / CSS compressors
    * [WICKET-5897] - Use the #isEnabled() method with validators
    * [WICKET-5918] - Create an Image component that uses the new
data: protocol (an InlineImage)
    * [WICKET-5919] - Add support for CSRF prevention

** Task

    * [WICKET-5896] - Upgrade jQuery to latest stable versions (1.11.4 & 2.1.3)

View raw message