certs/ca.pem
, certs/localhost.pem
,
and certs/localhost.p12
, which were causing tests to fail unexpectedly.This is a feature release.
This is a dependency update release that should be transparent to users but may have upgrade risks.
This is a bug fix release.
This is a bug fix release, but contains important upgrade information.
webserver.allow-renegotiation
key.Also, a special thanks to @EdwardBetts for the documentation fix!
This is a feature release.
The 2.0.0 release was mistakenly for a Java 7 runtime even though the underlying Jetty libraries were built for Java 8 runtime. The code for this release is built for a Java 8 runtime instead.
This is a major release
TK-369 Move Jetty dependency to 9.4.4. Notably, this change drops Java 7 support as Jetty 9.3 and higher only support Java 8 and higher. No public APIs have changed in this release.
The behavior of normalize-uri-path has changed slightly due to changes in Jetty's URIUtil decodePath method. Specifically, overlong encodings (which are considered invalid UTF-8) change their decoded value (but are still not traversable), and semicolons no longer terminate URI processing, but only when ; is followed at some point by another path segment beginning with /. For example, "/foo/bar;bar=chocolate/baz;baz=bim" now decodes to "/foo/bar/baz" while before it decoded to "/foo/bar". If the request has invalid % encoded UTF-8 characters, the path will be decoded as an ISO-8859-1 encoded string. (https://github.com/eclipse/jetty.project/commit/7f62f2600b943b9aed0e4771891939bf61372c5a)
TK-373 Enable Diffie Hellman cipher suites. DHE cipher suites were previously disabled due to bugs with DH ciphers on Oracle JDK 7.
TK-374 Remove obsolete SSL ciphers.
This is a feature release.
This is a feature and bugfix release.
request-body-max-size
setting for restricting the maximum
Content-Length
allowed for requests.This is a "feature" release.
request-path
to the WebsocketProtocolThis is a maintenance release.
This is a maintenance release.
This is a maintenance release.
This is a bugfix release.
This is a security release.
normalize-request-uri
, which can be
used to request that the URI path component is sanitized before the
handler is invoked for a request and that .getRequestURI
calls made by
the handler return a path that has been percent-decoded.This is a bugfix and maintenance release.
stop
by ensuring that the server shuts down and cleans up mbeans in
an idempotent way.This is a bugfix release.
TimeoutException
that Jetty throws if its stopTimeout
is reached
before it can gracefully complete all of the open requests. Ensures
that the server will be restarted during a HUP even if the timeout
occurs.This version number was burned due to an error during the release/deploy process.
This is a maintenance release.
org.clojure/java.jmx
a top-level dependency so that it can be
pulled in automatically via a transitive dependency by consumers of the
testutils jar.This is a bugfix release.
This is a "feature" release.
get-server
to web routing service.This is a bugfix release.
This is a feature and maintenance release.
add-websockets-handler
function in the WebserverService and WebroutingService and corresponding
client protocol WebsocketProtocol.This is a maintenance release.
This is a "feature" and security release.
TK-178 Upgraded Jetty version dependency to v9.2.10. Jetty v9.2.10 includes changes made in the Jetty v9.2.9 release to address a critical security vulnerability with data potentially being leaked across requests. See https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00074.html for more information. For a rollup of changes included in the Jetty v9.2.10 release, see https://github.com/eclipse/jetty.project/blob/jetty-9.2.10.v20150310/VERSION.txt.
TK-168 Default values for several settings will now derive from the underlying defaults that Jetty would use. This effectively changes the defaults for the following settings:
shutdown-timeout-seconds
in webserver
section - 60 seconds -> 30 seconds
:idle-timeout
for add-proxy-route
- 60 seconds -> 30 seconds
TK-148 Several related changes:
Default for max-threads
in webserver
section changed from 100 to
200.
Exposed new settings for configuring the number of acceptor-threads
and selector-threads
that a Jetty webserver will use.
Removed work which would automatically bump the server's max-threads
up
to the minimum needed for the server to boot for the case that max-threads
had not been configured but the server's minimum needed threads had
exceeded the default max-threads
. The original work which enabled the
automatic bump had been done in TK-130.
This is a feature release.
so-linger-seconds
setting, which can be used to adjust the TCP
SO_LINGER time.post-config-script
setting; this is for advanced / edge-case
configuration needs. If you need to modify a Jetty setting that we don't
expose in our own config, you can provide a snippet of Java code to access
the Jetty Server object directly and modify additional settings.ssl-protocols
and cipher-suites
. This allows these settings to be used with older
config file formats, such as ini.idle-timeout-milliseconds
setting, which can be used to tell
Jetty to forcefully close a client connection if it is idle for a specified
amount of time.add-proxy-route
(TK-110).This is a security release.
ssl-protocols
setting.This is a minor bugfix release.
:redirect-if-no-trailing-slash
,
that determines whether or not a 302 response will be
returned when making requests to endpoints with registered
handlers without a trailing slash on the end.shutdown-timeout-seconds
, that allows
users to set the stop timeout of the Jetty server.This is a minor feature and bugfix release.
get-registered-endpoints
and log-registered-endpoints
functions. Now, a map will be output where each key is
an endpoint, with its value being an array containing
information on every handler registered at that endpoint.access-log-config
, that allows configuration of request
logging.add-proxy-route
,
failure-callback-fn
, which allows customization of
HTTP Error Responses.This is a dead release.
This is a minor feature release.
gzip-enable
that can be used to
enable/disable support for gzipping responses to
requests that include an appropriate Accept-Encoding
header.This is a minor feature release.
static-content
configuration
setting in the webserver config and to the add-context-handler
service function that allows symlinks to be followed when serving
static content.This is a minor feature release.
static-content
configuration setting to the
webserver config. This setting allows you to serve files on disk
or resources in a jar as static assets at a given URL prefix,
all via configuration.This is a minor, backward-compatible feature and bugfix release.
default-server
support did not work for some functions, such as
get-registered-endpoints
.ssl-cert-chain
get-route
function to web routing service.server-id
when there are multiple servers
configured, an error will be thrown.default
;
instead it is configured by specifying default-server: true
in the configuration for the given server.server-id
in the WebroutingService
configuration, instead of forcing it to be done in code.request-header-max-size
WebserverService
can now run multiple Jetty servers, on different ports.WebroutingService
to provide a centralized, configuration-based
way to configure all of the URL paths at which services will register web applications
(Ring handlers, Servlets, etc.)jetty9-service
get-registered-endpoints
and log-registered-endpoints
functions
to the WebserverService
ssl-crl-path
, can be used to configure a
Certificate Revocation List that Jetty would use to validate client
certificates for incoming SSL connections.override-webserver-settings!
, which allows another
service to provide overridden values for the webserver configuration.add-proxy-route
, which supports configuring the server to
work as a reverse proxy for certain routesadd-context-handler
, which supports registering
a context handler for static content, with optional support for context listeners
via the javax.servlet.ServletContextListener
interface.add-war-handler
service function.init
life cycle to the start
life cycles.port
was specified in the webserver config,
the Jetty webserver was still opening an http binding on port 8080. An
http port binding will now be opened only if a port
is specified in the
config file.client-auth
webserver setting.
The setting specifies how the server validates the client certificate
during the setup of an SSL connection. The default behavior if the setting
is not specified is the same as with prior releases; the server will
require that the SSL client provide a certificate and that the certificate
be valid. For more information, refer to the [jetty-config.md]
(doc/jetty-config.md) document.Can you improve this documentation?Edit on GitHub
cljdoc is a website building & hosting documentation for Clojure/Script libraries
× close