Changes since 24.1.4
Fixes
-
Fix incompatibility with Spring Security 6.1.2
Commit · Pull request · IssueSpring security configurers accepting string matchers may fail to detect whether the parameter is a Spring MVC pattern or not. This change updates VaadinWebSecurity to explicitly use ant path request matchers.
-
Fix regression when sync id check is disabled (#17238)
Commit · Pull requestWhen syncId check is disabled, long-polling push cache filter always cached all messages. This change fixes the regression, by preventing message cache when syncId check is disabled.
-
Unregister shortcut beforeClientResponse callback on component detach (#17228)
Commit · Pull request · IssueIf a component that is a shortcut lifecycle owner is attached and detached in the same roundtrip its beforeClientResponse callback is not unregistered causing also potential serialization issues. This change unregisters the callback on component detach, and it turns the callback into an anonymous class to prevent deserialization issues due to self references.
-
Prevent deadlock when push is requested during disconnect (#17130)
Commit · Pull requestPrevents a deadlock that may happen when a servlet container holds a lock on HTTP session access and a push disconnection happens concurrently with a push operation requested when VaadinSession is unlocked after session destroyed listeners are invoked. References #16293
-
Prevent NPE in ShortcutRegistration.toString (#17218)
Commit · Pull request -
Add missing hint for native build (#17179)
Commit · Pull request