Changelog History
Page 1
-
v2.0.0 Changes
๐ New modules
ratpack-config
ratpack-func
Module removals
ratpack-base
(collapsed intoratpack-exec
)- ๐
ratpack-hystrix
(Hystrix is no longer maintained, relies onratpack-rx
which is removed) ratpack-pac4j
(in favor of https://github.com/pac4j/ratpack-pac4j)- ๐
ratpack-remote
(obsolete due to additions ofImposition
andRatpackServer.getRegistry()
, URLClassLoader no longer supported in Java > 9) - โ
ratpack-remote-test
(obsolete due to additions ofImposition
andRatpackServer.getRegistry()
, URLClassLoader no longer supported in Java > 9) ratpack-rx
(in favor ofratpack-rx2
)ratpack-thymeleaf
(in favor ofratpack-thymeleaf3
)
๐ฆ Package relocations
ratpack.api
โratpack.exec.api
- ๐
ratpack.config
โ moved toratpack-config
module ratpack.error
โratpack.core.error
ratpack.file
โratpack.core.file
ratpack.form
โratpack.core.form
- ๐
ratpack.func
โ moved toratpack-func
module ratpack.handling
โratpack.core.handling
ratpack.health
โratpack.core.health
ratpack.http
โratpack.core.http
ratpack.impose
โratpack.core.impose
ratpack.jackson
โratpack.core.jackson
- ๐ฒ
ratpack.logging
โratpack.core.logging
- ๐
ratpack.parse
โratpack.core.parse
ratpack.path
โratpack.core.path
ratpack.registry
โratpack.exec.registry
ratpack.reload
โratpack.core.reload
ratpack.render
โratpack.core.render
ratpack.server
โratpack.core.server
ratpack.service
โratpack.core.service
ratpack.sse
โratpack.core.sse
ratpack.ssl
โratpack.core.ssl
ratpack.stream
โratpack.exec.stream
ratpack.util
โratpack.exec.util
ratpack.websocket
โratpack.core.websocket
โก๏ธ Dependecy updates
- netty 4.1.48.FINAL โ 4.1.65.FINAL
- netty-tcnative 2.0.30.FINAL โ 2.0.40.FINAL
- guava 28.2-jre โ 29.0-jre
- rxjava2 2.1.2 โ 2.2.19
- ๐ reactor 3.1.8.RELEASE โ 3.3.7.RELEASE
- jackson 2.10.3 โ 2.11.1
- โฌ๏ธ dropwizard metrics 4.1.6 โ 4.1.9
- pegdown 1.5.0 โ 1.6.0
- log4j 2.13.1 โ 2.17.0
- ๐ newrelic 3.15.0 โ 5.13.0
- reactiveStreams 1.0.2 โ 1.0.3
- guice 4.1.0 โ 4.2.3
- caffeine 2.8.1 โ 2.8.5
- retrofit 2.8.1 โ 2.9.0
- commons-codec 1.10 โ 1.14
- snakeyaml 1.23 โ 1.26
- commons-lang3 3.3.2 โ 3.10
- ๐ springboot 1.3.RELEASE โ 2.6.3
TODOs
- ๐ฆ
SiteMain
had to inline ratpack-asset-pipeline code to handle package renames. ratpack-asset-pipeline
version inratpack-site
is very old, but not a problem due to above TODO.- โ Remove handling for
ratpack.core.server.LaunchException
-
v1.9.0
-
v1.8.0 Changes
April 27, 2020Ratpack 1.8.0 is now available!
๐ This release adds support for configuring a proxy to utilize with the
HttpClient
for outgoing requests, additional convenience methods forPromise.retry
, a number of dependency updates, and other improvements .โฌ๏ธ The following core dependencies have been upgraded:
- Netty 4.1.37.Final โ 4.1.48.Final
- Netty TCNative 2.0.25.Final โ 2.0.30.Final
- Jackson 2.9.8 โ 2.10.3
- Slf4j 1.7.25 โ 1.7.30
- Guava 21.0 โ 28.2-jre
- โฌ๏ธ Dropwizard Metrics 4.0.5 โ 4.1.6
- Log4j 2.6.2 โ 2.13.1
- Caffeine 2.6.2 โ 2.8.1
- Retrofit 2.4.0 โ 2.8.1
Ratpack's
HttpClient
can now be configured to utilize a proxy server when sending requests using theHttpClientSpec. proxy
method. Configuring the proxy requires specifying thehost
andport
of the proxy. Optionally, the configured proxy can be bypassed for a set of destinations. This set uses the same pattern matching utilized by the core Java libraries and specified here: https://docs.oracle.com/javase/8/docs/technotes/guides/net/proxies.html. It should be noted that theHttpClient
does not respect thehttp.proxyHost
,http.proxyPort
, andhttp.nonProxyHosts
system properties.๐ In this release,
Promise.retry
has been extended to allow for specifying aPredicate
to indicate when theRetryPolicy
should be evaluated.โ There are also a few other new convenience methods added to support easier development and testing of Ratpack applications.
Thanks to all who contributed.We hope you enjoy Ratpack 1.8.
--
Team Ratpack
-
v1.7.6 Changes
January 25, 2020๐ This release includes a fix for a security vulnerability. This upgrade is recommended for all Ratpack users.
๐ Versions of Ratpack 0.9.10 through and including 1.7.5 are vulnerable to CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (aka. XSS),
๐ป in the development error handler. An attacker can utilize this to perform XSS when an exception message contains untrusted data.This vulnerability only exists in the handler that renders an internal server error as a readable HTML page which is activates when Ratpack is running in development mode. This mode is only activate by user request (i.e. setting
development(true)
in theServerConfig
, settingRATPACK_DEVELOPMENT=true
in the environment), or when Ratpack detects it is running in an IDE (i.e. IntelliJ), being run by the Groovy shell, or attached to a debugger. By default, Ratpack setsdevelopment(false)
when packaged as a Jar.๐ Users should verify that they are not running Ratpack with development mode activated in production environments.
We would like to thank Jonathan Leitschuh for reporting this vulnerability.
๐ Please see the security advisory for this issue for more information.
-
v1.7.5
October 09, 2019 -
v1.7.4
September 25, 2019 -
v1.7.3 Changes
August 18, 2019๐ This release includes a fix for
HttpClient
idle timeout that was introduced in Ratpack 1.7.0. Specifically, this timeout was incorrectly applying to in-use HTTP connections from the pool that were idle waiting for a server response. This fixes this behavior and clarifies thatidleTimeout
applies only to connections that are not currently acquired from the pool. This upgrade is recommended for everyone using 1.7.x. -
v1.7.2 Changes
August 03, 2019๐ This release includes a fix for a regression introduced in 1.7.0 that resulted in double URL encoded query parameters in redirect responses. Please see the issue list below for details. This upgrade is recommended for everyone using 1.7.x.
-
v1.7.1 Changes
July 20, 2019Ratpack 1.7.1 is now available!
๐ This patch release fixes a bug with idle connection timeouts for Ratpack'sHttpClient
(introduced in1.7.0
) which prevented timeouts larger than 1 second to be specified.
No other changes were introduced.--
Team Ratpack
-
v1.7.0 Changes
July 14, 2019Ratpack 1.7.0 is now available!
๐ This release adds support of idle timeouts when using connection pooling inHttpClient
, an improvedPromise.retry
interface, a few dependency updates, deprecation of theratpack-pac4j
,ratpack-rx
, andratpack-thymeleaf
modules and other improvements and bug fixes.โฌ๏ธ The following core dependencies have been upgraded:
- Netty 4.1.32.Final โ 4.1.37.Final
- Gradle 4.10 โ 5.1.1
- Groovy 2.4.15 โ 2.5.4
- โฌ๏ธ Dropwizard Metrics 3.1.1 โ 4.0.5
- Spock 1.1-groovy-2.4 โ 1.3-groovy-2.5
- ๐ Handlebars 4.0.7 โ 4.1.2
๐ง The idle timeout for Ratpack's
HttpClient
can now be configured using theHttpClientSpec.idleTimeout
method. Specifying a non-zero value for this timeout will allow Ratpack to close unused connections.๐ The new
Promsie.retry
method provides a mechanism for encoding complex retry logic inPromise
behavior. With the addition of this method, the previousretry
methods have been deprecated.Ratpack will now use the native
OpenSSL
libraries if available on the runtime system.โ The new
MockApi
andHandlerFactory
classes provided additional fixtures for writing tests for Ratpack applications. Combined with a mocking framework such as Spock, they allow for declaring remote API behaviors for an application, inline to a test.๐ As of this release the
ratpack-pac4j
library that is released as part of this project is officially deprecated and will be removed in Ratpack 2.0. Support for the latest version of Pac4j are provided via theratpack-pac4j
module maintained by the Pac4j team.๐ As of this release the
ratpack-rx
andratpack-thymeleaf
libraries that are released as part of this project are officially deprecated and will be removed in Ratpack 2.0. Users should migrate to theratpack-rx2
andratpack-thymeleaf3
libraries.๐ There are also many other new convenience methods, bug fixes and generally cool stuff added in this release.
Thanks to all who contributed.We hope you enjoy Ratpack 1.7.
--
Team Ratpack