Changes since 24.0.11
Fixes
-
Fix incompatibility with Spring Security 6.0.5
Commit · Pull request · IssueSpring security configurers accepting string matchers may fail to detect whether the parameter is a Spring MVC pattern or not. This change updates VaadinWebSecurity to explicitly use ant path request matchers.
-
Prevent deadlock when push is requested during disconnect
Commit · Pull requestPrevents a deadlock that may happen when a servlet container holds a lock on HTTP session access and a push disconnection happens concurrently with a push operation requested when VaadinSession is unlocked after session destroyed listeners are invoked. References #16293
-
Unregister shortcut beforeClientResponse callback on component detach (#17228)
Commit · Pull request · IssueIf a component that is a shortcut lifecycle owner is attached and detached in the same roundtrip its beforeClientResponse callback is not unregistered causing also potential serialization issues. This change unregisters the callback on component detach, and it turns the callback into an anonymous class to prevent deserialization issues due to self references.
-
Fix regression when sync id check is disabled (#17238)
Commit · Pull requestWhen syncId check is disabled, long-polling push cache filter always cached all messages. This change fixes the regression, by preventing message cache when syncId check is disabled.
-
Prevent NPE in ShortcutRegistration.toString (#17218)
Commit · Pull request -
Add missing hint for native build (#17179)
Commit · Pull request -
Prevent writing service worker on filesystem in dev mode (#17155)
Commit · Pull requestWhen running in dev mode, the service worker should be served from memory and not written to the filesystem, to avoid potential endless restarts when Spring dev tools are in use. This change fixes a regression introduced when service worker compression was implemented, that causes sw.js to be written to the filesystem also in dev mode.