Antonio,
we are sorry to hear this, since this page entry first and foremost
represents you personal, unexpirable merit in contributing to the growth
and maintenance of a software project quite a few people found and still
find useful.
We respect your decision and wish you all the best. If your
Two new Struts Security Bulletins have been issued for Struts 2 by the
Apache Struts Security Team: [1]
S2-059 - Forced double OGNL evaluation, when evaluated on raw user input
in tag attributes, may lead to remote code execution (CVE-2019-0230) [2]
S2-060 - Access permission override causing a
+1 GA, binding
Thanks Lukasz!
- René
Am 02.07.20 um 07:31 schrieb Lukasz Lenart:
> Once you have had a chance to review the test build, please respond
> with a vote on its quality:
>
> [ ] Leave at test build
> [ ] Alpha
> [ ] Beta
> [ ] General Availability (GA)
>
--
René Gielen
Hey Lukasz,
there is still no publication of the latest site master. Looking into
the ticket, you said things work now, but ...?!?
Thanks & regards,
René
Am 13.04.20 um 09:02 schrieb Lukasz Lenart:
> pon., 13 kwi 2020 o 08:45 Rene Gielen napisał(a):
>>
>> Thanks Luka
This is more a question for the users list, isn't it?
- René
Am 09.04.20 um 08:15 schrieb Lukasz Lenart:
> śr., 8 kwi 2020 o 22:44 Martin Gainty napisał(a):
>>
>> .Hi Lukasz
>>
>> /2.3.24.1/bundles>grep -S -l "bundle<" *.*
>>
>> ./admin/pom.xml
>> ./demo/pom.xml
>
> Yes, I know that we have
Hi Justin,
Am 13.04.20 um 08:23 schrieb Justin Mclean:
> Hi,
>
>> Both artifacts however are technical upstream artifacts for framework
>> releases and it does not make any sense for them to be used outside of
>> this context, say by end users upgrading their stack.
>
> Well ASF policy states
Thanks Lukasz!
As I also mentioned in my comment, it does not look like direct pushes
to master get picked up for the production site. Do you have an idea?
- René
[1] https://github.com/apache/struts-site/pull/144#discussion_r407337579
Am 11.04.20 um 19:08 schrieb Lukasz Lenart:
> Hi,
>
> I
Hi Justin,
good catch - it was overseen.
Both artifacts however are technical upstream artifacts for framework
releases and it does not make any sense for them to be used outside of
this context, say by end users upgrading their stack.
Does it make sense to list them in the report regardless?
Hey folks,
was there a specific reason the Struts site build job was de-activated?
https://builds.apache.org/view/S-Z/view/Struts/job/Struts-site/
I re-activated it, so if this increases the probability for world
destruction please let me know :)
- René
--
René Gielen
On behalf the ASF Diversity & Inclusion Committee:
Hello everyone,
If you have an apache.org email, you should have received an email with
an invitation to take the 2020 ASF Community Survey. Please take 15
minutes to complete it.
If you do not have an apache.org email address or you didn’t
Extending on behalf of the Apache Travel Committee.
---
The Travel Assistance Committee (TAC) are pleased to announce that
travel assistance applications for ApacheCon NA 2019 are now open!
We will be supporting ApacheCon NA Las Vegas, Nevada on 9th - 12th
September 2019
TAC exists to help
+1 GA (binding)
Am 27.09.18 um 08:48 schrieb Lukasz Lenart:
> The Struts Master 13 test build is now available as a Maven artifact.
> https://repository.apache.org/content/groups/staging/org/apache/struts/struts-master/13/
>
> Release notes:
> * uses a proper profile to prepare a release,
+1 GA (binding)
Am 20.08.18 um 07:31 schrieb Yasser Zamani:
> The Apache Struts 2.5.17 test build is now available. In addition to critical
> overall proactive security improvements, it includes the latest security
> patch
> which fixes one possible vulnerability:
> - Possible Remote Code
+1 GA (binding)
@Yasser: Great work, thanks a lot!
Please keep in mind that your vote also counts. You have casted a vote,
yet not voted yourself. Please consider doing so since we need at least
3 binding +1!
Am 20.08.18 um 07:30 schrieb Yasser Zamani:
> The Apache Struts 2.3.35 test build is
Reminder that travel assistance applications for ApacheCon NA 2018 are
still open but only for another*2 weeks*!
Please get your applications in NOW.
We will be supporting ApacheCon NA Montréal, Canada on 24th - 29th
September 2018
TAC exists to help those that would like to attend ApacheCon
+1 GA (binding)
Am 18.08.17 um 10:12 schrieb Lukasz Lenart:
> The Struts Master 11 test build is now available as a Maven artifact.
>
> https://repository.apache.org/content/groups/staging/org/apache/struts/struts-master/11/
>
> Release notes:
> * uses the latest Apache Parent POM version 18
More of that...
http://www.reuters.com/article/us-canada-cyber-idUSKBN16K2BC
Am 09.03.17 um 16:04 schrieb Lukasz Lenart:
> 2017-03-09 15:45 GMT+01:00 Dave Newton :
>>
Am 13.02.17 um 12:10 schrieb Lukasz Lenart:
> 2017-02-04 19:19 GMT+01:00 Yasser Zamani :
>> 2. When I fixed WW-4694, I discovered that our AnnotationUtils has not
>> any tangible improvement for about 4 years and also, with my changes, a
>> method named isAnnotatedBy will
Am 23.11.16 um 12:56 schrieb Lukasz Lenart:
> I prefer to go in small steps:
>
> - Struts 2.6 - Servlets 2.5, JSP 2.1, Java 7
> - Struts 3 - Servlets 3.0, JSP 2.2, Java 7
> - Struts 4 - ..., Java 8
>
> and as from Struts 3 switch to full Semantic Versioning http://semver.org/
+1 to all these
+1 GA (binding)
Am 12.07.16 um 07:37 schrieb Lukasz Lenart:
> The Apache Struts 2.3.30 test build is now available. With this release:
>
> [WW-4641] - CVE-2016-0785
> [WW-4642] - Unable to retrieve s:hidden field values
> [WW-4645] - SecurityMemberAccess exclude class design issue
> [WW-4651] -
+1 GA, binding
Am 20.04.16 um 15:19 schrieb Lukasz Lenart:
> The Struts 2.3.24.3 test build is now available. It includes the
> latest security patch which fixes three possible vulnerabilities:
> - Forced double OGNL evaluation, when evaluated on raw user input in
> tag attributes, may lead to
+1 GA, binding
Am 20.04.16 um 13:51 schrieb Lukasz Lenart:
> The Struts 2.3.20.3 test build is now available. It includes the
> latest security patch which fixes three possible vulnerabilities:
> - Forced double OGNL evaluation, when evaluated on raw user input in
> tag attributes, may lead to
+1 GA, binding
Am 20.04.16 um 08:42 schrieb Lukasz Lenart:
> The Struts 2.3.28.1 test build is now available. It includes the
> latest security patch which fixes two possible vulnerabilities:
> - Possible RCE vulnerability in XSLTResult
> - Prevents execution of chained expressions based on new
+1 GA (binding)
- René
Am 18.03.16 um 10:01 schrieb Lukasz Lenart:
> This is a third call in row with tiny fix discovered during test
> period so I'm going to speed things up as there are three security
> bulletins addressed with this release.
>
> The Apache Struts 2.3.26 test build is now
This is good news!
Am 04.03.16 um 08:27 schrieb Lukasz Lenart:
> Hi,
>
> Struts 2.3.25 is almost here just 5 issues left but those aren't huge
> problems.
>
>
Greg is a Struts committer and as such completely free to implement and
commit on features or bugs, with or without PR. Given that, I think Greg
is pretty well aware how things are run.
Just in case this needs clarification, I'll put this straight with my
"manager" (aka PMC member) hat on:
What
Would be a nice addition, indeed.
I think an image with Tomcat+war would be a good way to go for people to
try the showcases.
Maven image + checkout from git + building would be of interest for core
developers only, not sure wether one would want to go down this route.
- René
Am 08.02.16 um
[ ] Leave at test build
[ ] Alpha
[x] Beta
[ ] General Availability (GA)
Great job!
Am 21.01.16 um 14:56 schrieb Lukasz Lenart:
> The Apache Struts 2.5 BETA3 test build is now available.
>
> New in BETA1
> - XWork source was merged into Struts Core source, it means that there
> be no more
Hi Lukasz,
sorry for seeing this post a little bit late - too much mails all
around, I guess :)
I've made some progress on this as time permits, but still a lot to be
done. I'm convinced that moving to MarkDown / AsciiDoctor would be a
HUGE improvement both for our docs in general as well as our
Please follow the instructions found here:
http://struts.apache.org/mail.html
Am 06.01.16 um 19:17 schrieb john feng:
> unsubscribe
>
--
René Gielen
http://twitter.com/rgielen
-
To unsubscribe, e-mail:
This is really a great improvement for having a portable and easy to
setup publishing platform, indeed.
Related: I made some experiments with JBake lately
http://jbake.org/
The claim "Jekyll of the JVM" pins it down quite well. It requires just
a JDK and integrates perfectly with maven builds.
:46 GMT+02:00 Lukasz Lenart lukaszlen...@apache.org:
2015-05-22 13:40 GMT+02:00 Rene Gielen gie...@it-neering.net:
While it is OK for me to drop GitFlow, I'm -1 for moving core
development to GitHub. We should not rely on an external service for our
internal workflow. GitHub should remain
While it is OK for me to drop GitFlow, I'm -1 for moving core
development to GitHub. We should not rely on an external service for our
internal workflow. GitHub should remain the interface for external
contributors, but not the place where the committership driven
development should take place.
Just to make it clear: as of today, Christoph's vote is technically
binding by all means :)
@Christoph: later today you'll get a mail with further information
- René
Am 11.05.15 um 15:03 schrieb Christoph Nenning:
2015-05-10 8:32 GMT+02:00 i...@flyingfischer.ch i...@flyingfischer.ch:
+1
+1 GA binding
Thanks Łukasz!
- René
Am 06.05.15 um 09:28 schrieb Lukasz Lenart:
The Struts 2.3.20.1 test build is now available. It includes the
latest security patch which fixes one possible vulnerabilities:
- Wrong excludeParams overrides those defined in
DefaultExcludedPatternsChecker
Can't believe this is a minor release
Great job, thank Lukasz!
- René
Am 08.12.14 16:37, schrieb Lukasz Lenart:
The Apache Struts group is pleased to announce that Apache Struts
2.3.20 is available as a General Availability release. The GA
designation is our highest quality grade.
Apache
Hi Markus,
to help collect the vote and for enabling consistent future reference to
the voting process thread it would be great if you could reply to
Łukasz' [VOTE] mail.
Sorry for for being a bit pedantic, and thanks for voting :)
Regards,
René
Am 01.12.14 18:23, schrieb
We kind of broke it already. Currently it looks broken in either way to me.
I think we should try for the best possible fix that has clear semantics
and an easy-enough migration path.
I'd also suggest to discuss this further in the mentioned JIRA ticket to
have a straight issue history.
- René
To add some additional context, anyone is invited to vote. The more votes
we get, binding or not, the more confident we can be about the release
quality. On the other hand, if we get -1 from any of the voters, we
carefully have to check what the reasons were and if GA release makes sense
then.
Looks great!
Am 27.10.2014 14:28 schrieb Lukasz Lenart lukaszlen...@apache.org:
2014-10-08 7:35 GMT+02:00 Lukasz Lenart lukaszlen...@apache.org:
Done, please check - we have one more version then normally as jpg
version doesn't allow transparent background :-) She complained a bit
for that
This would be great, yes.
Am 02.10.14 14:31, schrieb Lukasz Lenart:
Should we prepare the same Powered by... logo?
-- Forwarded message --
From: Sally Khudairi s...@apache.org
Date: 2014-10-01 18:32 GMT+02:00
Subject: Announcing the new Powered By Apache logo
To: ASF
her
;-)
2014-03-19 16:32 GMT+01:00 Rene Gielen gie...@it-neering.net:
By sudden I realized I forgot to comment so far - shame on me!
Logo image idea / execution: fabulous
Color scheme: 3rd ++, 2nd +
Font: Yet undecided. My gut fav is 2nd, but I also agree with Lukasz
that Aleo (1st
:
https://copy.com/Ly91R3KAkPCm
https://copy.com/9gghodFkEJmr
About CamelCase - hm... good question, I also like that - will ask her
;-)
2014-03-19 16:32 GMT+01:00 Rene Gielen gie...@it-neering.net:
By sudden I realized I forgot to comment so far - shame on me!
Logo image idea / execution
Reference:
https://java.net/projects/jax-rs-spec/lists/users/archive/2014-08/message/16
It was tried to make this a part if next JAX-RS spec, but wit this
message it is clear that it will be covered by a new JSR apart from JAX-RS
See also the attached PDF in the posting.
- René
Am 19.08.14
Correct, unsigned releases won't make it to central.
On 24. Juni 2014 07:06:46 MESZ, Lukasz Lenart lukaszlen...@apache.org wrote:
I think yes
https://repository.apache.org/content/groups/public/org/apache/struts/struts2-core/2.3.16/
and this is verified by Nexus during Closing repository (I
Karma should be there again, enjoy the powers :)
Am 20.06.14 16:45, schrieb Paul Benedict:
Who, so mighty and powerful, can grant me the karma back?
Cheers,
Paul
--
René Gielen
http://twitter.com/rgielen
-
To
Hi,
actually this is the place to discuss the development of the Struts
framework. To get support for developing applications based on Struts 2,
the user mailing list is the place to find help:
http://struts.apache.org/mail.html
Regarding your particular problem: When you are going to rephrase
As confirmed in our last announcement, the Apache Struts 1 framework in
all versions is affected by a ClassLoader manipulation vulnerability
(CVE-2014-0114) similar to a recently fixed vulnerability in Struts 2
(CVE-2014-0112, CVE-2014-0094) [1].
Thanks to the efforts of Alvaro Munoz and the HP
The Apache Struts project team confirms that Struts 1 in all versions is
affected by a ClassLoader manipulation vulnerability similar to a
recently fixed vulnerability in Struts 2 (CVE-2014-0112, CVE-2014-0094) [1].
This is a different underlying flaw. For future reference, please use
+1 GA
Thanks Lukasz!
Am 24.04.14 23:13, schrieb Lukasz Lenart:
The Struts 2.3.16.2 test build is now available. It includes the
latest security patch which fixes two possible vulnerabilities:
- Improves excluded params to avoid ClassLoader manipulation via
ParametersInterceptor
- Adds
In Struts 2.3.16.1, an issue with ClassLoader manipulation via request
parameters was supposed to be resolved. Unfortunately, the correction
wasn't sufficient.
A security fix release fully addressing this issue is in preparation and
will be released as soon as possible.
Once the release is
Fair enough. For future votes we should keep in mind that that 72h is
the minimum time. Given that a test drive of a full release takes it's
time (for me ususally around 2 -3 hours), granting our users and
developers a full week before cancelling the vote seems to be reasonable
- even given the
Looks good.
Great job, you are a machine ;)
- René
Am 30.03.14 20:52, schrieb Lukasz Lenart:
Version Notes
https://cwiki.apache.org/confluence/display/WW/Version+Notes+2.3.17
Please take a look if everything is ok. Thanks!
2014-03-28 21:56 GMT+01:00 Lukasz Lenart
By sudden I realized I forgot to comment so far - shame on me!
Logo image idea / execution: fabulous
Color scheme: 3rd ++, 2nd +
Font: Yet undecided. My gut fav is 2nd, but I also agree with Lukasz
that Aleo (1st) is classy.
Is there a consensus about all uppercase writing? Am I too traditional
Checked, no issues found.
+1 GA (binding)
- René
Am 03.03.14 09:19, schrieb Lukasz Lenart:
The Struts 2.3.16.1 test build is now available. It includes the
latest security patch which fixes two possible vulnerabilities.
For details and the rationale behind these changes, please consult the
Am 28.01.14 12:19, schrieb Lukasz Lenart:
I don't think we need git-flow - we don't have huge development team,
there is (almost) no situation when we work together on some
issue/feature. And learning the whole flow is useless (at this
moment).
Then I'm wondering a bit why we wanted to move
Hey Lukasz others,
sorry for chiming in a bit late, I'm suffering from heavy workload
currently.
Basically this idea looks quite good and straightforward to me. On the
other hand, kind of a standard, named git-flow, seems to have
established, which I find worth evaluating:
Am 16.01.14 14:14, schrieb Lukasz Lenart:
Till we won't decide what flow to use, it's ok to commit directly to
master branch.
... or maybe open some arbitrary feature-branch first?
Regards
-
To unsubscribe, e-mail:
I wonder what the downside is to just put svn subtrees in question into
read only mode compared to moving them to attic. As for placing a
prominent notice, such as MOVED-TO-GIT-README.txt, it would be useful to
our users in either case.
Having a look at wicket, they just left svn at a point in
+1
Paul Benedict pbened...@apache.org schrieb:
No, please don't move things to the attic. We published POMs and other
links to the repository. We should just make it read-only.
On Tue, Jan 14, 2014 at 1:23 PM, Johannes Geppert joh...@gmail.com
wrote:
Looks good to me!
Thanks Łukasz for
+0 GA binding
... for now - I'm currently not able to give it a decent test drive, due
to end-of-year madness. I may change my vote if I find some time, though.
Great job Lukasz!
- René
Am 04.12.13 18:18, schrieb Lukasz Lenart:
The Apache Struts 2.3.16 test build is now available. With this
Am 20.11.13 14:52, schrieb Christian Grobmeier:
On 12 Nov 2013, at 16:51, Lukasz Lenart wrote:
2013/11/12 Cameron Morris cmor...@part.net:
I love the look of steampunk and rickety old bridges, but I think it
sends
the wrong message for a project fighting the perception of being old and
Hi Lukasz,
what is the rationale behind refactoring out velocity support to a
plugin? For which Struts version are you targeting this proposal?
Regards,
René
Am 18.11.13 20:38, schrieb Lukasz Lenart:
Hi,
As I'm working in extracting Velocity support into a plugin, I have
faced a small
It gets into moderation, I had to let it pass manually
Am 23.10.2013 13:18 schrieb Lukasz Lenart lukaszlen...@apache.org:
I overlooked that the info about pull request goes here ;-) Nice :-)
2013/10/23 lukaszlenart g...@git.apache.org:
GitHub user lukaszlenart opened a pull request:
We might be able to add this to the accept list, but I'm not too sure if
we want to do this - a spammer got misuse pull requests. On the other
hands, we did not get too much pull requests so far.
Am 23.10.13 13:51, schrieb Lukasz Lenart:
ech... is it possible to automise that?
2013/10/23 Rene
I'll step up first - I'll buy you a beer in Antwerp, given you will be
attending Devoxx ;)
Am 19.10.13 17:33, schrieb Lukasz Lenart:
2013/10/19 Dave Newton davelnew...@gmail.com:
Definitely.
We should do something nice for him. Ideas?
Wat? ;-)
Regards
--
René Gielen
Great job, Lukasz!
Lukasz Lenart lukaszlen...@apache.org schrieb:
The Apache Struts group is pleased to announce that Struts 2.3.15.3 is
available as a General Availability release.The GA designation is
our highest quality grade.
Apache Struts 2 is an elegant, extensible framework for creating
As a first reaction one might find the trademark discussion Christian
brought up a bit picky, but it isn't.
There has been a lot of traffic on the board list regarding trademark
issues last year, resulting in an enforced policy for PMCs to watch and
protect their and Apache's trademarks. You
Hi folks,
one of the key facts that people don't get about Struts 2 is that XML is
not needed for configuration. While I think that the Convention plugin
needs to be moved (and be the default) for Struts NEXT, we could do
something now to help our users.
My suggestion is to rearrange the maven
Rene Gielen:
I just wanted to get this clarified. Seems like we have an agreement :-)
Am 17.09.2013 21:14 schrieb Christian Grobmeier grobme...@gmail.com:
Am 17.09.13 21:06, schrieb Johannes Geppert:
-1 for moving trunk only. We don't want to lose history, and we would
not want two repositories
+1 GA (binding)
Am 18.09.13 11:07, schrieb Lukasz Lenart:
The Struts 2.3.15.2 test build is now available. It includes the
latest security patches which fix two possible vulnerabilities.
For details and the rationale behind these changes, please consult the
corresponding security bulletins:
Sounds good to me, +1
2013/9/17 Lukasz Lenart lukaszlen...@apache.org
2013/9/14 Philip Luppens philip.lupp...@gmail.com:
On Sat, Sep 14, 2013 at 11:13 AM, Lukasz Lenart lukaszlen...@apache.org
wrote:
Hi,
Before moving to GIT I'd like to clean up struts2/branches. As already
--
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/
2013/9/15 Rene Gielen rene.gie...@gmail.com:
Am 15.09.13 10:46, schrieb Lukasz Lenart:
2013/9/14 bphill...@ku.edu bphill...@ku.edu:
For the Documentation menu items why not use Struts 2 and Struts 1 as
menu
choices instead
in short time), tags and trunk.
I bet you are on the same page here.
Johannes
#
web: http://www.jgeppert.com
twitter: http://twitter.com/jogep
2013/9/13 Rene Gielen rene.gie...@gmail.com
+1 for git flow as the way to go
Great job, guys. Clean and catchy, yet informative.
Am 17.09.13 21:46, schrieb Ken McWilliams:
Congratulations. It looks great.
On Tue, Sep 17, 2013 at 1:11 PM, Christian Grobmeier
grobme...@gmail.comwrote:
Hey all,
we have a new main site, I just pulled the trigger :-)
Am 15.09.13 10:46, schrieb Lukasz Lenart:
2013/9/14 bphill...@ku.edu bphill...@ku.edu:
For the Documentation menu items why not use Struts 2 and Struts 1 as menu
choices instead of Struts 2.3.x and Struts 1.3.x. When we release Struts
2.4 we'll have to change those. The page those menu items
and the rest can be improved in meantime.
2013/9/10 Christian Grobmeier grobme...@gmail.com:
Am 10.09.13 18:11, schrieb Rene Gielen:
If I'd use [Publish Site] now in the Bookmarklet, the site gets - well
-
published. So better nobody would hit this unless we are sure to
launch the
reworked
+1 for git flow as the way to go, including excellent tooling - command
line extensions, Atlassian Sourcetree support and even a IDEA plugin
(https://github.com/OpherV/gitflow4idea) help to make this an elegant
abstract and reliable workflow.
-1 for moving trunk only. We don't want to lose
http://struts.staging.apache.org/
Am 13.09.2013 18:35 schrieb Paul Benedict pbened...@apache.org:
Where can I see the new website before it goes live?
On Fri, Sep 13, 2013 at 2:22 AM, Rene Gielen rene.gie...@gmail.com
wrote:
As this a major change, a formal vote might be a valid option
Lukasz,
Please clarify - is it the idea to leave site, struts1 etc in San (agreed)
or to move struts2/TRUNK *only*, that is not moving struts2/branches and
struts2/tags? For the latter, I'm absolutely -1 - it's my strong opinion
that we should move the full struts 2 scm repo tree, thus working in
Johannes,
Could you please remove the IDEA .iml files you committed?
Thanks
René
Am 11.09.2013 19:06 schrieb jo...@apache.org:
Author: jogep
Date: Wed Sep 11 17:06:05 2013
New Revision: 1521940
URL: http://svn.apache.org/r1521940
Log:
WW-4197 Update Archetypes READMEs
Added:
You guys are aware that we cannot publish to live anymore now? We would
rollout the new site then.
2013/9/10 Lukasz Lenart lukaszlen...@apache.org
Uh... uh... osm :-)
2013/9/10 Christian Grobmeier grobme...@gmail.com:
Am 10.09.13 14:18, schrieb Lukasz Lenart:
OSM! :-)
I'd just move
want to make sure anybody is aware of this (as long as I'm not missing
something here).
- René
2013/9/10 Christian Grobmeier grobme...@gmail.com
Am 10.09.13 14:40, schrieb Lukasz Lenart:
2013/9/10 Rene Gielen rene.gie...@gmail.com:
You guys are aware that we cannot publish to live anymore
As you might know, we had a hackathon this weekend in Augsburg, Germany
(http://strutsathon.opensource.io/) where we experimented a bit with
available options and requierements.
One of the outcomes was that we may want to start with a real user
guide that helps to get started and addresses common
While this isn't a full review, some first impressions:
- Landing page: Key Technologies section (left bottom div) is redundant
given the Technology Primer link in the hero bar. I would rather
recommend to place the most important announcement (such as security
announcement / latest release info)
Am 04.09.13 14:52, schrieb Christian Grobmeier:
Am 04.09.13 14:47, schrieb shekher awasthi:
Hi Lukas,
I have maven as well Eclipse in place, should i just build them and than i
am ready to start (Confused :()
With eclipse i think you should do:
mvn eclipse:eclipse
Although I'm also
, and we have not yet a working solution for publishing such
exorts periodically.
Pleas use Confluence as the cannonical source of draft docs:
https://cwiki.apache.org/confluence/display/WW/Spring+Plugin
- René
On Sat, Aug 10, 2013 at 5:15 AM, Rene Gielen rene.gie...@gmail.com wrote:
Am 10.08.13
Am 10.08.13 07:42, schrieb Steven Benitez:
Never mind, this looks to be driven by Confluence and I don't have
permission to make changes. Can someone update this document accordingly?
Fixed. If you want to help fixing Confluence docs, you need to file a
CLA. Then we could give you edit
Am 06.08.13 07:39, schrieb Lukasz Lenart:
2013/8/5 Dave Newton davelnew...@gmail.com:
I expect most of you already saw (or assumed) this, but just in case:
https://confluence.atlassian.com/display/DOC/Confluence+Security+Advisory+2013-08-05
Oh OGNL.
Last time guys from Atlassian contacted
-DskipAssembly is the way to go as long as Confluence requires a login
to use the web service interface and you don't have one. Also, if you
don't need the full docs in your local build the docs assembly phase is
really one you would like to skip given the time it takes.
If you want to add a
Am 13.07.13 22:38, schrieb Przemysław Celej:
Hi,
[...]
Please consider writing version notes more carefully when you doing
such changes, I'm sure that most developers who rely on
ParameterNameAware inteface doesn't know that in recent versions of
Struts this behaviour has changed.
No
The Apache Struts group is pleased to announce that Struts 2.3.15.1 is
available as a General Availability release. The GA designation is
our highest quality grade.
Apache Struts 2 is an elegant, extensible framework for creating
enterprise-ready Java web applications. The framework is designed
+1 GA, binding
- René
Am 15.07.13 00:15, schrieb Rene Gielen:
The Struts 2.3.15.1 test build is now available. It includes the latest
security patches which fix two possible vulnerabilities.
For details and the rationale behind these changes, please consult the
corresponding security
The vote has closed with following result:
5 +1 GA (binding)
I'm going to release 2.3.15.1 as soon as possible.
Thanks,
René
Am 15.07.13 00:15, schrieb Rene Gielen:
The Struts 2.3.15.1 test build is now available. It includes the latest
security patches which fix two possible vulnerabilities
The Struts 2.3.15.1 test build is now available. It includes the latest
security patches which fix two possible vulnerabilities.
For details and the rationale behind these changes, please consult the
corresponding security bulletins:
* https://cwiki.apache.org/confluence/display/WW/S2-016
*
Will hopefully being able to check tomorrow
Am 27.06.13 22:11, schrieb Lukasz Lenart:
Can you take a look on that [1]? I don't know how to setup
SiteExporter to get it running :\
[1] https://issues.apache.org/jira/browse/WW-4130
Regards
--
René Gielen
http://twitter.com/rgielen
This sounds a bit like inversion of control. As for me, I'd rather not
like to have my model (which is to validate) to have knowledge about the
business side validation is triggered from. When I develop from the action
perpective, I know if the current method is better off triggering
validation or
Please join us in welcoming Bruce Phillips as a new Struts committer.
Bruce has done a great job in keeping our docs alive, including the
authoring of various Getting Started and Tutorial examples.
Welcome, bphillips@ ... great to have you on board now!
- René
--
René Gielen
+1 GA (binding)
Am 19.06.13 09:15, schrieb Lukasz Lenart:
The Struts 2.3.14 test build is now available. With this release:
- merged security fix from version 2.3.14.1, 2.3.14.2 and 2.3.14.3
- resolved problem with memory leak in ContainerHolder
- resolved bug related to
Am 18.06.13 15:41, schrieb Lukasz Lenart:
Hi,
I have edited one page [1] but after migration it will pain-in-the-ass
to change anything :\ Maybe it's time to migrate to Markdown format?
[1] https://cwiki2.apache.org/confluence/display/WW/Version+Notes+2.3.15
Regards
CSS for warning
1 - 100 of 444 matches
Mail list logo