XSSFilter patch from str4d:
XSSFilter and XSSRequestWrapper were from http://ricardozuasti.com/2012/stronger-anti-cross-site-scripting-xss-filter-for-java-web-apps/
No provided license, but it is clearly intended for public consumption.
But most of it is boilerplate provided by the Servlet Filter system.
In fact, now that I have stripped out his JS-specific patterns and replaced it with the whitelist,
it is effectively identical to what I would have written from scratch.
- Add SIGNATURE_TYPE support to GENERATE and CREATE
- Don't NPE checking dest+privkeys
- Simplify HELLO checking
- Don't require two params in HELLO message
- Make MIN parameter optional too
- Version checking fixes
- Bump version to 3.1, only visible if requested
- Cleanups, javadocs
Version handling (ticket #1318)
- MAX param now optional
- 1-digit versions now accepted for MIN and MAX
- Use VersionComparator for version tests
- Don't require a minor version of 0
- Fix empty properties check
- Overrides
- Prep for version 3.1
Throw exception on null option key (ticket #1325)
- Display webapp name in html title (ticket #1311)
- Use tracker from magnet link in display (ticket #1313)
- Clarify auto-start (ticket #1293)
- Include tracker in magnet link on details page (ticket #964)
- Recognize .azw4 extension as ebook
- Cleanups
The last-modified date was getting updated even when
the server returned e.g. 503, preventing routers from
getting the latest file on a subsequent fetch.
required to precompile jsps with tags (SusiDNS and Bote).
As of 6.0.39, these utils are required but they are not bundled
in the Tomcat deployer package, the main package is required.
This checkin has only the classes required from the jar.
* OCMOSJ:
- Increase timeout if we must lookup leaseset
* Streaming:
- Shorter expire time in TCBCache
- Don't fail a connection once it is up
- Log tweaks
