Changes since 24.3.0.alpha2
New features
-
Add navigation access control feature
Commit · Pull requestThis change introduces a new component to handle access control during view navigation. The NavigationAccessControl is a transparent replacement for ViewAccessChecker, but it can be configure to perform additional custom checks, such as the out-of-the-box RoutePathAccessChecker, that verifies if a user is allowed to visit given path. In Spring Boot projects, RoutePathAccessChecker integrates with Spring URL-based HTTP security, allowing to define protect rules for routes using ant matchers through the VaadinWebSecurity.routeAwareAntMatcher method. It can be enabled by providing a NavigationAccessControlConfigurer bean, customized as needed. RoutePathAccessChecker integration with other security frameworks can be obtained by implementing custom AccessPathChecker.
Fixes
-
Prevent installing pnpm if not required
Commit · Pull request · IssueTo check if the prepare frontend task is up-to-date, the Flow gradle plugin also tracks the pnpm executable paths. However, getting the paths triggers the installation of pnpm, even if the tool is not enabled in configuaration. This change only tracks pnpm paths if the tool is explicitly enabled.
-
Throw if not CREATED response
Commit · Pull request · Issue