Re: [VOTE] Release Apache Wicket 9.0.0-M5 TAKE 3

[Andrea Del Bene]

Ok, I've moved ahead with manual steps. Tomorrow I will prepare and send 
the release announce.

On 4/5/20 9:45 PM, Sven Meier wrote:
If it's too much hassle with these manual steps, just do another vote.
That's not a big problem for me.

Thanks
Sven


On 05.04.20 20:00, Andrea Del Bene wrote:
Sorry folks but I've wrongly  executed the "revert" script instead of 
"promote release" :-(. Unfortunately I've realized this mistake only 
after publishing stage repository, which I use to do manually rather 
than with the release script. Now I can easily restore binaries 
archives from svn and moving them to mirrors. In this way the release 
will be completed and correct. I will have to manually create the 
release branch and the release announce, but it should not be a big 
deal. I would prefer to finish the release in this way, otherwise we 
should somehow "rollback" stage repository publication and start a 
new release.

What do you think?

On 4/5/20 7:13 PM, Andrea Del Bene wrote:
This vote passes! Thank you everyone!

On 4/5/20 8:45 AM, Maxim Solodovnik wrote:
Hello Sebastien,

to bypass
Content Security Policy: The page’s settings blocked the loading of a
resource at inline (“style-src”). 2 jquery-3.4.1-ver-1586053743308.js
:4817:39

I have added log-point to this line and print all `elem` to console
these errors are caused by Ajax updates
`elem` usually contains elements with inline style attributes

On Sun, 5 Apr 2020 at 13:41, Sebastien Briquet 
<sbriq...@apache.org> wrote:

Hi,

I'm currently testing M5 against Wicket JQuery UI / Wicket Kendo UI.
With CSP disabled, it seems to work as expected!

I'm upgrading the sample application to make it work with CSP 
enabled. So
far it works (even not yet complete), but some things seems to be 
out of my
hands, like:

Content Security Policy: The page’s settings blocked the loading of a
resource at inline (“style-src”). 2 jquery-3.4.1-ver-1586053743308.js
:4817:39
<
http://localhost:8080/wicket-jquery-ui/wicket/resource/org.apache.wicket.resource.JQueryResourceReference/jquery/jquery-3.4.1-ver-1586053743308.js 

It seems to come from the bundled jQuery, here is the line:
tmp = getAll( fragment.appendChild( elem ), "script" );

The CSP error seems legit, but I don't know how we can circumvent 
it (did
not investigate yet)... I do have few others but I need to double 
check if
it comes from my jQuery usage or not...

Anyway, I think it is good enough to release this Milestone so 
users can
test and report before the Final.
[x] Yes, release Apache Wicket 9.0.0-M5

Thanks for the big work!
Sebastien