Java CMS engine. Host and develop multiple websites inside a single instance through the GUI and benefit from features like A/B testing, affiliate tracking tools, and a high performance template engine with CSS stylesheets processing & scripts minification.

Overview

Free enterprise Java CMS

https://ncms.softmotions.com

ηCMS features

  • Multiple websites on a single ηCMS application node.
  • Can handle hundreds of simultaneous website editors.
  • Flexible access rights management for website pages.
  • Central repository for all website media content.
  • Ability to develop and deploy a whole website using the ηCMS user interface. Any part of the site page can be changed through the ηCMS UI.
  • ηCMS module subsystem allows building a custom extensions.
  • Support of virtual hosts.
  • A/B testing and marketing tools.
  • Support of Postgresql and DB2 databases.

Documentation

ηCMS showcase

ηCMS showcase

Comments
  • Bump h2 from 1.4.199 to 2.0.206

    Bump h2 from 1.4.199 to 2.0.206

    Bumps h2 from 1.4.199 to 2.0.206.

    Release notes

    Sourced from h2's releases.

    Version 2.0.206

    Critical security issue with H2 console is fixed.

    Also important changes included:

    Version 2.0.204

    Multilple regression fixes discovered after 2.0.202 release,

    There are no persistence changes between 2.0.202 and 2.0.204, so jar file swap is enough, if database had been upgraded to 2.0.202 already, otherwise please read the message below:

    Between version 1.4.200 and version 2.0.202 there have been considerable changes, such that a simple update is not possible. The official way to upgrade is to do a BACKUP of your existing database USING YOUR CURRENT VERSION OF H2. Then create a fresh database USING THE NEW VERSION OF H2, then perform a SCRIPT to load your data.

    Version 2.0.202

    Besides many dozens of fixed bugs, performance improvements, more adherence to a standard SQL syntax and type system, there are

    Some new features:

    • Complete re-work of INFORMATION_SCHEMA to be more in-line with the standard
    • Support for new types: ARRAY, ROW, JAVA_OBJECT
    • Numerous bit, string, array and system functions implemented
    • Standard-based access to generated keys
    • JDBC 4.2 compliance
    • Support for JDK 7 is dropped
    • PageStore is discontinued

    MVStore changes:

    • Descending MVMap and TransactionMap cursor
    • Disk space reclamation algorithm improvements

    Between version 1.4.200 and version 2.0.202 there have been considerable changes, such that a simple update is not possible. The official way to upgrade is to do a BACKUP of your existing database USING YOUR CURRENT VERSION OF H2. Then create a fresh database USING THE NEW VERSION OF H2, then perform a SCRIPT to load your data.

    Version 1.4.200

    Some new features:

    • JSON data type; JSON_OBJECT, JSON_ARRAY, JSON_OBJECTAGG, and JSON_ARRAYAGG functions; JSON predicate
    • TIME WITH TIME ZONE data type
    • BITNOT, LSHIFT, and RSHIFT functions

    ... (truncated)

    Commits
    • 3d957a0 Release 2.0.206 preparation
    • 2b6e303 Update changelog
    • b24aa46 Check URL scheme
    • 4a2e677 Get data types directly from linked tables from H2
    • 69aff24 Fix ValueVarcharIgnoreCase.equals()
    • 0ebf142 Fix group-sorted optimization for data types with different equal values
    • 8aca5f4 Correct Date and Time part in tutorial.html
    • 4bfd6f0 Add support of H2 2.0+ to source.html and sourceError.html
    • 927c830 Update copyright years
    • abac6c8 Next development version
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
  • Bump shiro.version from 1.4.0 to 1.5.0

    Bump shiro.version from 1.4.0 to 1.5.0

    Bumps shiro.version from 1.4.0 to 1.5.0.

    Updates shiro-web from 1.4.0 to 1.5.0

    Commits
    • d1f1c07 [maven-release-plugin] prepare release shiro-root-1.5.0
    • cb3a1b3 Merge pull request #197 from bmhm/SHIRO-469
    • b280f19 [SHIRO-469] (doc) correct javadoc for JdbcRealm#setPermissionQuery.
    • 4329f2a Merge pull request #196 from fpapon/ASYNC_TEST
    • 93142c5 [SHIRO-735] Add tests
    • 5799afe Merge pull request #193 from bmhm/SHIRO-735
    • a7b37f6 Updating CXF (#195)
    • 0b52b2d Merge pull request #192 from fpapon/SHIRO-734
    • 6eb7836 [SHIRO-734] Remove Spring-client sample
    • f81b6f4 [SHIRO-735] Enable servlet async support.
    • Additional commits viewable in compare view

    Updates shiro-guice from 1.4.0 to 1.5.0

    Updates shiro-core from 1.4.0 to 1.5.0

    Commits
    • d1f1c07 [maven-release-plugin] prepare release shiro-root-1.5.0
    • cb3a1b3 Merge pull request #197 from bmhm/SHIRO-469
    • b280f19 [SHIRO-469] (doc) correct javadoc for JdbcRealm#setPermissionQuery.
    • 4329f2a Merge pull request #196 from fpapon/ASYNC_TEST
    • 93142c5 [SHIRO-735] Add tests
    • 5799afe Merge pull request #193 from bmhm/SHIRO-735
    • a7b37f6 Updating CXF (#195)
    • 0b52b2d Merge pull request #192 from fpapon/SHIRO-734
    • 6eb7836 [SHIRO-734] Remove Spring-client sample
    • f81b6f4 [SHIRO-735] Enable servlet async support.
    • Additional commits viewable in compare view

    Updates shiro-ehcache from 1.4.0 to 1.5.0

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 1
  • Implement missing keyboard shortcuts in admin UI parts

    Implement missing keyboard shortcuts in admin UI parts

    Asm editor attributes, Alt+Insert - Add new attribute

    Asm editor parents, Alt+Insert - Add new parent

    Mtt traffic: Alt+Insert - New traffic rulw

    Mtt tracking pixels: Alt+Insert - New tracking pixel

    Edit Page, page access rights: Alt+Insert - Add user Delete - Remove user

    opened by adamansky 1
  • Bump shiro.version from 1.4.1 to 1.5.1

    Bump shiro.version from 1.4.1 to 1.5.1

    Bumps shiro.version from 1.4.1 to 1.5.1.

    Updates shiro-web from 1.4.1 to 1.5.1

    Commits
    • 1a7a396 [maven-release-plugin] prepare release shiro-root-1.5.1
    • 9762f97 Merge pull request #201 from tomsun28/path-match-bug-fix
    • f902982 fix bug throw exception when match url is /
    • 46583f2 Merge pull request #200 from apache/bump-aspectj-plugin-version
    • e555cd3 Update apsectj-maven-plugin version
    • 9786f90 Merge pull request #194 from bmhm/SHIRO-736
    • aa126e2 Merge pull request #199 from fpapon/SHIRO-739
    • c105a4d Add unit test for INI parsing with an enum
    • b006f3f [SHIRO-739] Bean reflection property failed with Enum values
    • 8c6af13 Merge pull request #198 from fpapon/SHIRO-738
    • Additional commits viewable in compare view

    Updates shiro-guice from 1.4.1 to 1.5.1

    Updates shiro-core from 1.4.1 to 1.5.1

    Commits
    • 1a7a396 [maven-release-plugin] prepare release shiro-root-1.5.1
    • 9762f97 Merge pull request #201 from tomsun28/path-match-bug-fix
    • f902982 fix bug throw exception when match url is /
    • 46583f2 Merge pull request #200 from apache/bump-aspectj-plugin-version
    • e555cd3 Update apsectj-maven-plugin version
    • 9786f90 Merge pull request #194 from bmhm/SHIRO-736
    • aa126e2 Merge pull request #199 from fpapon/SHIRO-739
    • c105a4d Add unit test for INI parsing with an enum
    • b006f3f [SHIRO-739] Bean reflection property failed with Enum values
    • 8c6af13 Merge pull request #198 from fpapon/SHIRO-738
    • Additional commits viewable in compare view

    Updates shiro-ehcache from 1.4.1 to 1.5.1

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump tika.version from 1.21 to 1.23

    Bump tika.version from 1.21 to 1.23

    Bumps tika.version from 1.21 to 1.23.

    Updates tika-core from 1.21 to 1.23

    Changelog

    Sourced from tika-core's changelog.

    Release 2.0.0 - ??? BREAKING CHANGES in 2.0.0

    • Remove deprecated Metadata keys/properties (TIKA-1974).

    Other changes

    Release 1.24 - ???

    • Upgrade metadata-extractor to 2.13.0 (TIKA-2952).

    • Upgrade to POI 4.1.2 (TIKA-3047).

    • Extract XMP from PSD files (TIKA-3050).

    • Added XMLProfiler as an optional parser to profile XFA and XMP in PDFs (TIKA-3045).

    • Extract inline images that rely on the DCT filter from PDFs (TIKA-3041).

    • Upgrade to PDFBox 2.0.19 (TIKA-3033).

    • Fix bug in ASM parser configuration (TIKA-2992).

    • Upgrade to java-libpst 0.9.3 (TIKA-2546).

    • Fixed XLIFF12Parser failures with ToXMLHandler (TIKA-3014).

    Release 1.23 - 12/02/2019

    • NOTE: The PDFParser now relies on OCRDPI to render page images when users configure OCR on rendered page images. This will have the effect of increasing rendered image size (TIKA-2624).

    • NOTE: tika-server no longer returns 415 for file types for which there is no parser.

    • Fix bug in AUTO OCR strategy in the PDFParser (TIKA-3002).

    • Fix incorrect height and width metadata extraction from JPEG images (TIKA-2630).

    • Upgrade to POI 4.1.1 (TIKA-2851).

    • Upgrade to PDFBox 2.0.17 (TIKA-2951).

    • Ensure that the PDFParser respects custom configuration of Tesseract from tika-config.xml via Eric Pugh (TIKA-2970).

    • Add parser for XLIFF v1.2 files (TIKA-2975).

    ... (truncated)
    Commits
    • 79f6c6c [maven-release-plugin] prepare release 1.23-rc2
    • a8d20dd roll back in preparation for 1.23-rc2
    • 4eb73d0 TIKA-2630 -- add defensive null check and fix "if (...width)" to "if (...heig...
    • 3c3214d update changes for 1.23-rc2
    • 5920689 improve logging and error handling in TikaServerIntegrationTest
    • 42676a6 improve logging and error reporting in TikaServerIntegrationTest
    • 85cd36d TIKA-2925 -- improve documentation to explain decision not
    • f67a834 TIKA-3002 -- fix bug in OCR AUTO mode
    • b86eb05 TIKA-2630 -- cleanup unit test
    • 90880e1 TIKA-2630: Wrong height and width metadata for JPEG images (#255)
    • Additional commits viewable in compare view

    Updates tika-parsers from 1.21 to 1.23

    Changelog

    Sourced from tika-parsers's changelog.

    Release 2.0.0 - ??? BREAKING CHANGES in 2.0.0

    • Remove deprecated Metadata keys/properties (TIKA-1974).

    Other changes

    Release 1.24 - ???

    • Upgrade metadata-extractor to 2.13.0 (TIKA-2952).

    • Upgrade to POI 4.1.2 (TIKA-3047).

    • Extract XMP from PSD files (TIKA-3050).

    • Added XMLProfiler as an optional parser to profile XFA and XMP in PDFs (TIKA-3045).

    • Extract inline images that rely on the DCT filter from PDFs (TIKA-3041).

    • Upgrade to PDFBox 2.0.19 (TIKA-3033).

    • Fix bug in ASM parser configuration (TIKA-2992).

    • Upgrade to java-libpst 0.9.3 (TIKA-2546).

    • Fixed XLIFF12Parser failures with ToXMLHandler (TIKA-3014).

    Release 1.23 - 12/02/2019

    • NOTE: The PDFParser now relies on OCRDPI to render page images when users configure OCR on rendered page images. This will have the effect of increasing rendered image size (TIKA-2624).

    • NOTE: tika-server no longer returns 415 for file types for which there is no parser.

    • Fix bug in AUTO OCR strategy in the PDFParser (TIKA-3002).

    • Fix incorrect height and width metadata extraction from JPEG images (TIKA-2630).

    • Upgrade to POI 4.1.1 (TIKA-2851).

    • Upgrade to PDFBox 2.0.17 (TIKA-2951).

    • Ensure that the PDFParser respects custom configuration of Tesseract from tika-config.xml via Eric Pugh (TIKA-2970).

    • Add parser for XLIFF v1.2 files (TIKA-2975).

    ... (truncated)
    Commits
    • 79f6c6c [maven-release-plugin] prepare release 1.23-rc2
    • a8d20dd roll back in preparation for 1.23-rc2
    • 4eb73d0 TIKA-2630 -- add defensive null check and fix "if (...width)" to "if (...heig...
    • 3c3214d update changes for 1.23-rc2
    • 5920689 improve logging and error handling in TikaServerIntegrationTest
    • 42676a6 improve logging and error reporting in TikaServerIntegrationTest
    • 85cd36d TIKA-2925 -- improve documentation to explain decision not
    • f67a834 TIKA-3002 -- fix bug in OCR AUTO mode
    • b86eb05 TIKA-2630 -- cleanup unit test
    • 90880e1 TIKA-2630: Wrong height and width metadata for JPEG images (#255)
    • Additional commits viewable in compare view

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump commons-compress from 1.18 to 1.19

    Bump commons-compress from 1.18 to 1.19

    Bumps commons-compress from 1.18 to 1.19.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump commons-compress from 1.18 to 1.19 in /ncms-engine/ncms-engine-core

    Bump commons-compress from 1.18 to 1.19 in /ncms-engine/ncms-engine-core

    Bumps commons-compress from 1.18 to 1.19.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump jackson.version from 2.9.9 to 2.10.0

    Bump jackson.version from 2.9.9 to 2.10.0

    Bumps jackson.version from 2.9.9 to 2.10.0.

    Updates jackson-core from 2.9.9 to 2.10.0

    Commits
    • 2ce8890 [maven-release-plugin] prepare release jackson-core-2.10.0
    • 0e59212 Prepare for 2.10.0
    • e8c9f22 Merge branch '2.9' into 2.10
    • 4899c28 [maven-release-plugin] prepare for next development iteration
    • d4bfe20 [maven-release-plugin] prepare release jackson-core-2.9.10
    • b17e3f1 Prepare for 2.9.10
    • fc73bee Fix #563 (async parser, location for array values)
    • ce70782 Start work on #563
    • 1c852df ...
    • 8a0df82 Minor test change
    • Additional commits viewable in compare view

    Updates jackson-databind from 2.9.9 to 2.10.0

    Commits

    Updates jackson-annotations from 2.9.9 to 2.10.0

    Commits

    Updates jackson-dataformat-xml from 2.9.9 to 2.10.0

    Commits
    • 3734729 [maven-release-plugin] prepare release jackson-dataformat-xml-2.10.0
    • cc495ab Prepare for 2.10.0
    • b5ae1e8 Fix #325
    • 2bc25e4 Merge branch '2.9' into 2.10
    • 944835d [maven-release-plugin] prepare for next development iteration
    • 2a65f5f [maven-release-plugin] prepare release jackson-dataformat-xml-2.9.10
    • 75e9608 preapre for 2.9.10
    • b40a078 ...
    • 7d9ff0c [maven-release-plugin] prepare for next development iteration
    • 63d7c3e [maven-release-plugin] prepare release jackson-dataformat-xml-2.10.0.pr3
    • Additional commits viewable in compare view

    Updates jackson-module-afterburner from 2.9.9 to 2.10.0

    Commits
    • f6b2267 [maven-release-plugin] prepare release jackson-modules-base-2.10.0
    • b1ec013 Prepare for 2.10.0
    • 2c130a4 Merge branch '2.9' into 2.10
    • f1d0ae7 [maven-release-plugin] prepare for next development iteration
    • 8bcc80f [maven-release-plugin] prepare release jackson-modules-base-2.9.10
    • a77393c prepare for 2.9.10
    • ae70595 javadoc fixes
    • 1d14a18 ...
    • 00f1fb9 [maven-release-plugin] prepare for next development iteration
    • 8144a42 [maven-release-plugin] prepare release jackson-modules-base-2.10.0.pr3
    • Additional commits viewable in compare view

    Updates jackson-dataformat-yaml from 2.9.9 to 2.10.0

    Commits
    • 653a521 [maven-release-plugin] prepare release jackson-dataformats-text-2.10.0
    • c867e7c Prepare for 2.10.0
    • a2108d6 Merge branch '2.9' into 2.10
    • c925161 [maven-release-plugin] prepare for next development iteration
    • 75c139c [maven-release-plugin] prepare release jackson-dataformats-text-2.9.10
    • 38a70b4 prepare for 2.9.10
    • f4a9b24 ...
    • 9b66b14 [maven-release-plugin] prepare for next development iteration
    • 28aeb99 [maven-release-plugin] prepare release jackson-dataformats-text-2.10.0.pr3
    • b762986 prepare for 2.10.0.pr3
    • Additional commits viewable in compare view

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Add a Gitter chat badge to README.md

    Add a Gitter chat badge to README.md

    Softmotions/ncms now has a Chat Room on Gitter

    @adamansky has just created a chat room. You can visit it here: https://gitter.im/Softmotions/ncms.

    This pull-request adds this badge to your README.md:

    Gitter

    If my aim is a little off, please let me know.

    Happy chatting.

    PS: Click here if you would prefer not to receive automatic pull-requests from Gitter in future.

    opened by gitter-badger 0
  • Bump shiro-web from 1.7.0 to 1.7.1

    Bump shiro-web from 1.7.0 to 1.7.1

    Bumps shiro-web from 1.7.0 to 1.7.1.

    Changelog

    Sourced from shiro-web's changelog.

    1.7.1

    ###########################################################

    Bug

    [SHIRO-797] - Shiro 1.7.0 is lower than using springboot version 2.0.7 dependency error
    

    ###########################################################

    Commits
    • 40bac06 [maven-release-plugin] prepare release shiro-root-1.7.1
    • ab1ea4a Improving tests for path matching logic
    • e35a669 Merge pull request #267 from bmarwell/envloader_it
    • 41436c8 (test) convert EnvironmentLoaderServiceTest partly to integration test.
    • 72f6076 Add missing license headers to new tests
    • c539537 Add basic tests to assert no whitespace in spring.factories fiels
    • 5f367c3 hotfix springboot spring.factories
    • 3bd10d3 [maven-release-plugin] prepare for next development iteration
    • See full diff in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump h2 from 1.4.199 to 2.1.210

    Bump h2 from 1.4.199 to 2.1.210

    Bumps h2 from 1.4.199 to 2.1.210.

    Release notes

    Sourced from h2's releases.

    Version 2.1.210

    Two security vulnerabilities in H2 Console (CVE-2022-23221 and possible DNS rebinding attack) are fixed.

    Persistent databases created by H2 2.0.x don't need to be upgraded. Persistent databases created by H2 1.4.200 and older versions require export into SQL script with that old version and creation of a new database with the new version and execution of this script in it.

    ... (truncated)

    Commits
    • ca926f8 Merge remote-tracking branch 'h2database/master'
    • be306de Version advancement
    • 030eb72 Improve migration documentation
    • 86d58c4 Merge pull request #3381 from katzyn/legacy
    • b613598 Typo
    • d6e4eb8 Add IDENTITY() and SCOPE_IDENTITY() to LEGACY mode
    • 36e790d make javadoc happier
    • 1c0ca27 Add "of this server" to adminWebExternalNames text
    • 0f83f48 Convert host names to lower case
    • c5f11a5 Merge pull request #3378 from katzyn/lob
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump shiro-core from 1.7.0 to 1.8.0

    Bump shiro-core from 1.7.0 to 1.8.0

    Bumps shiro-core from 1.7.0 to 1.8.0.

    Changelog

    Sourced from shiro-core's changelog.

    Licensed to the Apache Software Foundation (ASF) under one

    or more contributor license agreements. See the NOTICE file

    distributed with this work for additional information

    regarding copyright ownership. The ASF licenses this file

    to you under the Apache License, Version 2.0 (the

    "License"); you may not use this file except in compliance

    with the License. You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

    Unless required by applicable law or agreed to in writing,

    software distributed under the License is distributed on an

    "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY

    KIND, either express or implied. See the License for the

    specific language governing permissions and limitations

    under the License.

    This is not an official release notes document. It exists for Shiro developers to jot down their notes while working in the source code. These notes will be combined with Jira’s auto-generated release notes during a release for the total set.

    ###########################################################

    2.0.0

    ###########################################################

    Improvement

    [SHIRO-290] Implement bcrypt and argon2 KDF algorithms
    

    Backwards Incompatible Changes

    • Changed default DefaultPasswordService.java algorithm to "Argon2id".
    • PasswordService.encryptPassword(Object plaintext) will now throw a NullPointerException on null parameter. It was never specified how this method would behave.
    • Made salt non-nullable.
    • Removed methods in PasswordMatcher.

    ###########################################################

    1.7.1

    ###########################################################

    Bug

    [SHIRO-797] - Shiro 1.7.0 is lower than using springboot version 2.0.7 dependency error
    

    ###########################################################

    Commits
    • a86c51a [maven-release-plugin] prepare release shiro-root-1.8.0
    • e1b7802 Add @​Documented to Shiro annotations
    • b298f71 [SHIRO-678] only query parameters for sessionID if found
    • 4ed0c80 Merge pull request #310 from apache/backport-SHIRO-825-18
    • 4a20bf0 Backport SHIRO-825
    • 1447e43 Merge pull request #296 from apache/single-spring-1-8
    • 9f8e5c6 Configure japicmp to work with new single spring boot starter
    • ce743aa Combine Spring Boot starters (web and non-web) into single module
    • 358397b Merge pull request #299 from apache/jenkins-matrix-1.8
    • a9f646d Reverted Java 16 build back to 14
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump commons-compress from 1.20 to 1.21

    Bump commons-compress from 1.20 to 1.21

    Bumps commons-compress from 1.20 to 1.21.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump commons-compress from 1.19 to 1.21 in /ncms-engine/ncms-engine-core

    Bump commons-compress from 1.19 to 1.21 in /ncms-engine/ncms-engine-core

    Bumps commons-compress from 1.19 to 1.21.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
  • Bump pdfbox from 2.0.21 to 2.0.24

    Bump pdfbox from 2.0.21 to 2.0.24

    Bumps pdfbox from 2.0.21 to 2.0.24.

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies 
    opened by dependabot[bot] 0
Owner
Softmotions
Build reliable and secure software for millions
Softmotions
Firefly is an asynchronous web framework for rapid development of high-performance web application.

What is Firefly? Firefly framework is an asynchronous Java web framework. It helps you create a web application Easy and Quickly. It provides asynchro

Alvin Qiu 289 Dec 18, 2022
Flutter GetX模板代码生成 Gradle模式开发---Used to generate the template code of GetX framework

getx_template 语言: English | 中文简体 GetX usage Gold digging: Flutter GetX use --- simple charm! Renderings Plug-in effect Take a look at the effect diagr

小呆呆666 241 Dec 23, 2022
Development Driven Testing (DDT) lets you generate unit tests from a running application. Reproduce a bug, generate a properly mocked test

DDTJ: It kills bugs DDT is the flip side of TDD (Test-driven development). It stands for "Development Driven Tests". Notice that it doesn’t contradict

null 4 Dec 30, 2021
CUBA Platform is a high level framework for enterprise applications development

Java RAD framework for enterprise web applications Website | Online Demo | Documentation | Guides | Forum CUBA Platform is a high level framework for

CUBA Platform 1.3k Jan 1, 2023
Vaadin 6, 7, 8 is a Java framework for modern Java web applications.

Vaadin Framework Vaadin allows you to build modern web apps efficiently in plain Java, without touching low level web technologies. This repository co

Vaadin 1.7k Jan 5, 2023
Ninja is a full stack web framework for Java. Rock solid, fast and super productive.

_______ .___ _______ ____. _____ \ \ | |\ \ | | / _ \ / | \| |/ | \ | |/ /_\ \ / | \

Ninja Web Framework 1.9k Jan 5, 2023
The modular web framework for Java and Kotlin

∞ do more, more easily Jooby is a modern, performant and easy to use web framework for Java and Kotlin built on top of your favorite web server. Java:

jooby 1.5k Dec 16, 2022
ZK is a highly productive Java framework for building amazing enterprise web and mobile applications

ZK ZK is a highly productive Java framework for building amazing enterprise web and mobile applications. Resources Documentation Tutorial ZK Essential

ZK 375 Dec 23, 2022
A web MVC action-based framework, on top of CDI, for fast and maintainable Java development.

A web MVC action-based framework, on top of CDI, for fast and maintainable Java development. Downloading For a quick start, you can use this snippet i

Caelum 347 Nov 15, 2022
A server-state reactive Java web framework for building real-time user interfaces and UI components.

RSP About Maven Code examples HTTP requests routing HTML markup Java DSL Page state model Single-page application Navigation bar URL path UI Component

Vadim Vashkevich 33 Jul 13, 2022
RESTEasy is a JBoss project that provides various frameworks to help you build RESTful Web Services and RESTful Java applications

RESTEasy RESTEasy is a JBoss.org project aimed at providing productivity frameworks for developing client and server RESTful applications and services

RESTEasy 1k Dec 23, 2022
Javalin - A simple web framework for Java and Kotlin

Javalin is a very lightweight web framework for Kotlin and Java which supports WebSockets, HTTP2 and async requests. Javalin’s main goals are simplicity, a great developer experience, and first class interoperability between Kotlin and Java.

David (javalin.io) 6.2k Jan 6, 2023
Bootique is a minimally opinionated platform for modern runnable Java apps.

Bootique is a minimally opinionated java launcher and integration technology. It is intended for building container-less runnable Java applications. W

Bootique Project 1.4k Dec 29, 2022
Apache Wicket - Component-based Java web framework

What is Apache Wicket? Apache Wicket is an open source, java, component based, web application framework. With proper mark-up/logic separation, a POJO

The Apache Software Foundation 657 Dec 31, 2022
Micro Java Web Framework

Micro Java Web Framework It's an open source (Apache License) micro web framework in Java, with minimal dependencies and a quick learning curve. The g

Pippo 769 Dec 19, 2022
True Object-Oriented Java Web Framework

Project architect: @paulodamaso Takes is a true object-oriented and immutable Java8 web development framework. Its key benefits, comparing to all othe

Yegor Bugayenko 748 Dec 23, 2022
Java Web Toolkit

What is JWt ? JWt is a Java library for developing web applications. It provides a pure Java component-driven approach to building web applications, a

null 48 Jul 16, 2022
A simple expressive web framework for java. Spark has a kotlin DSL https://github.com/perwendel/spark-kotlin

Spark - a tiny web framework for Java 8 Spark 2.9.3 is out!! Changeset <dependency> <groupId>com.sparkjava</groupId> <artifactId>spark-core</a

Per Wendel 9.4k Dec 29, 2022
Tiny, easily embeddable HTTP server in Java.

NanoHTTPD – a tiny web server in Java NanoHTTPD is a light-weight HTTP server designed for embedding in other applications, released under a Modified

NanoHttpd 6.5k Jan 1, 2023