Eclipse
/
jetty.project
mirror of https://github.com/jetty/jetty.project.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
23,384 Commits 70 Branches 462 Tags 370 MiB
Commit Graph

23384 Commits

Author SHA1 Message Date
Jan Bartel e0d465e39a
Issue #7012 Replace geronimo spec jars with jakarta equivalents (#7013) 
* Issue #7012 Replace geronimo spec jars with jakarta equivalents

Signed-off-by: Jan Bartel <janb@webtide.com>
 2021-11-02 10:37:27 +11:00
dependabot[bot] 5d2f204c0c
Merge pull request #7040 from eclipse/dependabot/maven/jetty-10.0.x/io.hawt-hawtio-default-2.14.1 2021-10-27 14:01:09 +00:00
dependabot[bot] 14270ffed9
Bump jnr lib versions 
* Bump jnr-constants from 0.10.2 to 0.10.3
* Bump jnr-posix from 3.1.10 to 3.1.11
* Bump jnr-ffi from 2.2.7 to 2.2.8
* Bump jnr-enxio from 0.32.9 to 0.32.10
* Bump jnr-unixsocket from 0.38.11 to 0.38.12

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
 2021-10-27 08:11:17 -05:00
Joakim Erdfelt 7321d54915
Close Resources opened from java.nio.file.Files API calls (#7048) (#7050) 
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
 2021-10-27 05:53:10 -05:00
Joakim Erdfelt f5bb6991b7
Issue #7031 - Fixing ResponseWriter (#7032) 
+ Improving test coverage on response.getWriter()
  and response.getOutputStream() usage

Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
 2021-10-26 10:29:27 -05:00
dependabot[bot] 49fb320c9e
Merge pull request #7045 from eclipse/dependabot/maven/jetty-10.0.x/org.mortbay.jetty-h2spec-maven-plugin-1.0.9 2021-10-26 12:32:00 +00:00
dependabot[bot] 5d855f6d61
Bump h2spec-maven-plugin from 1.0.8 to 1.0.9 
Bumps [h2spec-maven-plugin](https://github.com/jetty-project/h2spec-maven-plugin) from 1.0.8 to 1.0.9.
- [Release notes](https://github.com/jetty-project/h2spec-maven-plugin/releases)
- [Commits](https://github.com/jetty-project/h2spec-maven-plugin/compare/h2spec-maven-plugin-1.0.8...h2spec-maven-plugin-1.0.9)

---
updated-dependencies:
- dependency-name: org.mortbay.jetty:h2spec-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-26 09:20:10 +00:00
dependabot[bot] 485e8fb40a
Merge pull request #7035 from eclipse/dependabot/maven/jetty-10.0.x/org.awaitility-awaitility-4.1.1 2021-10-26 04:07:20 +00:00
dependabot[bot] bd0aea3353
Bump hawtio-default from 2.14.0 to 2.14.1 
Bumps [hawtio-default](https://github.com/hawtio/hawtio) from 2.14.0 to 2.14.1.
- [Release notes](https://github.com/hawtio/hawtio/releases)
- [Changelog](https://github.com/hawtio/hawtio/blob/master/CHANGES.md)
- [Commits](https://github.com/hawtio/hawtio/compare/hawtio-2.14.0...hawtio-2.14.1)

---
updated-dependencies:
- dependency-name: io.hawt:hawtio-default
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-26 00:21:52 +00:00
dependabot[bot] c170b565d7
Bump awaitility from 4.1.0 to 4.1.1 
Bumps [awaitility](https://github.com/awaitility/awaitility) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/awaitility/awaitility/releases)
- [Changelog](https://github.com/awaitility/awaitility/blob/master/changelog.txt)
- [Commits](https://github.com/awaitility/awaitility/compare/awaitility-4.1.0...awaitility-4.1.1)

---
updated-dependencies:
- dependency-name: org.awaitility:awaitility
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-26 00:20:49 +00:00
dependabot[bot] 6b78cf9b0e
Merge pull request #7037 from eclipse/dependabot/maven/jetty-10.0.x/org.testcontainers-testcontainers-bom-1.16.2 2021-10-26 00:18:33 +00:00
dependabot[bot] be02f90914
Merge pull request #7028 from eclipse/dependabot/maven/jetty-10.0.x/org.mortbay.jetty-h2spec-maven-plugin-1.0.8 2021-10-25 10:14:25 +00:00
dependabot[bot] 742363b102
Bump testcontainers-bom from 1.16.1 to 1.16.2 
Bumps [testcontainers-bom](https://github.com/testcontainers/testcontainers-java) from 1.16.1 to 1.16.2.
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/master/CHANGELOG.md)
- [Commits](https://github.com/testcontainers/testcontainers-java/compare/1.16.1...1.16.2)

---
updated-dependencies:
- dependency-name: org.testcontainers:testcontainers-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-25 09:20:17 +00:00
dependabot[bot] 1b24daa111
Merge pull request #7029 from eclipse/dependabot/maven/jetty-10.0.x/com.github.spotbugs-spotbugs-maven-plugin-4.4.2.2 2021-10-25 03:52:54 +00:00
dependabot[bot] 6462ac91c4
Bump spotbugs-maven-plugin from 4.4.2.1 to 4.4.2.2 
Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.4.2.1 to 4.4.2.2.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases)
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.4.2.1...spotbugs-maven-plugin-4.4.2.2)

---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-25 02:26:27 +00:00
dependabot[bot] 45685c15e9
Bump h2spec-maven-plugin from 1.0.7 to 1.0.8 
Bumps [h2spec-maven-plugin](https://github.com/jetty-project/h2spec-maven-plugin) from 1.0.7 to 1.0.8.
- [Release notes](https://github.com/jetty-project/h2spec-maven-plugin/releases)
- [Commits](https://github.com/jetty-project/h2spec-maven-plugin/compare/h2spec-maven-plugin-1.0.7...h2spec-maven-plugin-1.0.8)

---
updated-dependencies:
- dependency-name: org.mortbay.jetty:h2spec-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-25 02:25:31 +00:00
dependabot[bot] d4ee8d522a
Bump testcontainers-bom from 1.16.0 to 1.16.1 (#7019) 
* Bump testcontainers-bom from 1.16.0 to 1.16.1

Bumps [testcontainers-bom](https://github.com/testcontainers/testcontainers-java) from 1.16.0 to 1.16.1.
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases)
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/master/CHANGELOG.md)
- [Commits](https://github.com/testcontainers/testcontainers-java/compare/1.16.0...1.16.1)

---
updated-dependencies:
- dependency-name: org.testcontainers:testcontainers-bom
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

* use mongodb testcontainer module and upgrade a bit mongodb version
* give it more time to start
* use mongo image from test container api for distribution test
* create only once
* use a different wait strategy based on log rather than port as hazelcast try to do some broadcastind
* change wait for strategy

Co-authored-by: Olivier Lamy <oliver.lamy@gmail.com>
Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-22 10:50:45 -05:00
Joakim Erdfelt cdf03fed08
Merge pull request #7009 from eclipse/jetty-10.0.x-7008-updated-jetty-sh 
Issue #7008 - Fix regression in `bin/jetty.sh` on systems using `start-stop-daemon`
 2021-10-22 09:46:01 -05:00
dependabot[bot] 98c89ef42e
Merge pull request #7024 from eclipse/dependabot/maven/jetty-10.0.x/com.google.cloud-google-cloud-datastore-2.1.3 2021-10-21 23:07:13 +00:00
dependabot[bot] 9bec329c3f
Bump google-cloud-datastore from 2.1.2 to 2.1.3 
Bumps [google-cloud-datastore](https://github.com/googleapis/java-datastore) from 2.1.2 to 2.1.3.
- [Release notes](https://github.com/googleapis/java-datastore/releases)
- [Changelog](https://github.com/googleapis/java-datastore/blob/main/CHANGELOG.md)
- [Commits](https://github.com/googleapis/java-datastore/compare/v2.1.2...v2.1.3)

---
updated-dependencies:
- dependency-name: com.google.cloud:google-cloud-datastore
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-21 09:18:22 +00:00
Lachlan ec221865b6
Merge pull request #6978 from eclipse/jetty-10.0.x-4275-ambiguousparam 
Improve #4275 ambiguous URIs (#6939)
 2021-10-21 17:48:33 +11:00
Lachlan 366cb7ffc0
Merge pull request #6968 from eclipse/jetty-10.0.x-6965-WebSocketProgrammaticUpgrade 
Issue #6965 - support programmatic upgrade for javax/jakarta websockets (10)
 2021-10-21 17:23:08 +11:00
Lachlan 06a899f298
Merge pull request #6976 from eclipse/jetty-10.0.x-4317-GzipHandler-SSE 
Issue #4317 - exclude text/event-stream MIME type from GzipHandler
 2021-10-20 19:32:47 +11:00
dependabot[bot] b5cd311dbe
Merge pull request #7014 from eclipse/dependabot/maven/jetty-10.0.x/ant.version-1.10.12 2021-10-19 11:26:09 +00:00
dependabot[bot] cb5c52d4a7
Bump ant.version from 1.10.11 to 1.10.12 
Bumps `ant.version` from 1.10.11 to 1.10.12.

Updates `ant` from 1.10.11 to 1.10.12

Updates `ant-launcher` from 1.10.11 to 1.10.12

---
updated-dependencies:
- dependency-name: org.apache.ant:ant
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.ant:ant-launcher
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-19 09:19:37 +00:00
dependabot[bot] e860f41f19
Merge pull request #7007 from eclipse/dependabot/maven/jetty-10.0.x/com.github.spotbugs-spotbugs-maven-plugin-4.4.2.1 2021-10-19 05:51:48 +00:00
dependabot[bot] 0c62a0531f
Merge pull request #7006 from eclipse/dependabot/maven/jetty-10.0.x/jakarta.inject-jakarta.inject-api-1.0.4 2021-10-19 04:24:07 +00:00
Joakim Erdfelt c89866682c
Issue #7008 - fix jetty.sh - avoid duplicates 
+ Do not include JETTY_SYS_PROPS in JAVA_OPTIONS
  to avoid duplicates that show up in RUN_ARGS.
+ Only use JETTY_SYS_PROPS in RUN_CMD.

Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
 2021-10-18 09:51:17 -05:00
Joakim Erdfelt cdba235db6
Issue #7008 - fix jetty.sh 
+ Minor fix to remove extra LF output in RUN_ARGS
+ Using start-stop-daemon options properly

Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
 2021-10-18 09:39:37 -05:00
dependabot[bot] 1b32debc52
Bump spotbugs-maven-plugin from 4.4.2 to 4.4.2.1 
Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.4.2 to 4.4.2.1.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases)
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.4.2...spotbugs-maven-plugin-4.4.2.1)

---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-18 09:24:07 +00:00
dependabot[bot] 9183efaed6
Bump jakarta.inject-api from 1.0.3 to 1.0.4 
Bumps [jakarta.inject-api](https://github.com/eclipse-ee4j/injection-api) from 1.0.3 to 1.0.4.
- [Release notes](https://github.com/eclipse-ee4j/injection-api/releases)
- [Commits](https://github.com/eclipse-ee4j/injection-api/compare/1.0.3...1.0.4)

---
updated-dependencies:
- dependency-name: jakarta.inject:jakarta.inject-api
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-18 09:21:28 +00:00
Lachlan 2095fb06d6
Merge pull request #6998 from eclipse/jetty-10.0.x-6497-AliasCheckWarnings 
Issue #6497 - add warnings for alias checker deprecations
 2021-10-18 09:54:34 +11:00
Greg Wilkins 80ddc3ba2d
Update CVE releated issues with CVE number (#6949) 
It can be hard to find issues associated with CVEs after the fact.  We should update the issue description to include the CVE number once published.
 2021-10-18 07:27:54 +11:00
Lachlan Roberts 4682e6381f Issue #6497 - add warnings for alias checker deprecations 
Signed-off-by: Lachlan Roberts <lachlan@webtide.com>
 2021-10-15 12:01:35 +11:00
Olivier Lamy 2426b34a51
Issue #6980 mark the field as accessible (#6981) 
Signed-off-by: Olivier Lamy <oliver.lamy@gmail.com>
 2021-10-15 09:00:40 +10:00
dependabot[bot] d3a6d4bcce
Merge pull request #6995 from eclipse/dependabot/maven/jetty-10.0.x/org.osgi-osgi.annotation-8.0.1 2021-10-14 11:52:20 +00:00
dependabot[bot] 3089007810
Merge pull request #6996 from eclipse/dependabot/maven/jetty-10.0.x/com.github.spotbugs-spotbugs-maven-plugin-4.4.2 2021-10-14 10:45:35 +00:00
dependabot[bot] 431fd70334
Bump spotbugs-maven-plugin from 4.4.1 to 4.4.2 
Bumps [spotbugs-maven-plugin](https://github.com/spotbugs/spotbugs-maven-plugin) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/spotbugs/spotbugs-maven-plugin/releases)
- [Commits](https://github.com/spotbugs/spotbugs-maven-plugin/compare/spotbugs-maven-plugin-4.4.1...spotbugs-maven-plugin-4.4.2)

---
updated-dependencies:
- dependency-name: com.github.spotbugs:spotbugs-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-14 09:18:39 +00:00
dependabot[bot] 1bb99a0741
Bump osgi.annotation from 8.0.0 to 8.0.1 
Bumps [osgi.annotation](https://github.com/osgi/osgi) from 8.0.0 to 8.0.1.
- [Release notes](https://github.com/osgi/osgi/releases)
- [Commits](https://github.com/osgi/osgi/commits)

---
updated-dependencies:
- dependency-name: org.osgi:osgi.annotation
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-10-14 09:17:27 +00:00
markslater 7c4b7f5446
Issue #6987 - Add jetty-unixdomain-server to jetty-bom (#6988) 
Signed-off-by: markslater <mark.slater@mail.com>
 2021-10-14 10:06:29 +10:00
Joakim Erdfelt 1369ef9124
Merge pull request #6983 from eclipse/release-10.0.7 
Release 10.0.7
 2021-10-13 06:30:48 -05:00
Lachlan Roberts 866f4517db Improve #4275 ambiguous URIs (#6939) 
* Improve #4275 ambiguous URIs

A URI like `/foo/%2e%2e;/bar` should be ambiguous both because of the encoded dots and because of the parameters.  This means that the default setting of jetty-9 is a bit more secure as this path is considered ambiguous if either Violation.SEGMENT or Violation.PARAM is set.

Signed-off-by: Lachlan Roberts <lachlan@webtide.com>
 2021-10-12 18:22:12 +11:00
Lachlan Roberts 32187fb458 Issue #4317 - exclude text/event-stream MIME type from GzipHandler 
Signed-off-by: Lachlan Roberts <lachlan@webtide.com>
 2021-10-11 13:37:07 +11:00
Lachlan Roberts 5811b042b1 Issue #6965 - support programmatic upgrade for javax/jakarta websockets 
Signed-off-by: Lachlan Roberts <lachlan@webtide.com>
 2021-10-07 14:22:36 +11:00
Joakim Erdfelt cfc67f86d2 Updating to version 10.0.8-SNAPSHOT 2021-10-06 14:51:32 -05:00
Joakim Erdfelt da8a4553af Updating to version 10.0.7 2021-10-06 14:32:37 -05:00
Joakim Erdfelt 74bd815cd4 Fixing release script 2021-10-06 14:23:15 -05:00
Olivier Lamy ca8d147ec4
remove not anymore needed plugin execution as it is now in parent pom (#6964) 
Signed-off-by: Olivier Lamy <oliver.lamy@gmail.com>
 2021-10-06 16:04:06 +10:00
Greg Wilkins 8186a3ebed
Issue template to discourage security issues (#6960) 
Update the issue template to discourage security issues
 2021-10-06 14:31:45 +11:00
dependabot[bot] cd16deae32
Merge pull request #6955 from eclipse/dependabot/maven/jetty-10.0.x/com.puppycrawl.tools-checkstyle-9.0.1 2021-10-04 16:09:50 +00:00