Versions Compared

Old Version 416

changes.mady.by.user Ralph Voorips

Saved on

compared with

New Version 417

changes.mady.by.user Ralph Voorips

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleXperienCentral R39

XperienCentral R39

Release date: April 3, 2023


Note

Minimum Version Required for Upgrading to XperienCentral R39

Upgrading to XperienCentral R39 requires a minimum version of R26. If you are upgrading from XperienCentral R25 or lower, you must first upgrade to R26 and then upgrade to XperienCentral R39.


HTML
<br />

Check Configuration Files

See Check Configuration Files.

Filename Changes

The following files have been modified in this version of XperienCentral. If you have custom code that references the following files by name, you must modify your code to pick up these changes.

<xperiencentral-root>/webmanager-wcbs/webmanager-interactive-forms/wmpformpresentation/src/main/resources/presentationtype/static/wmpformpresentation/js/plugin/:

  • jquery-ui-1.13.1.min.css is now jquery-ui-1.13.2.min.css
  • jquery-ui-1.12.1.min.js is now jquery-ui-1.13.2.min.js
  • jquery-form-4.2.0.js is now jquery.form-4.3.0.min.js

<xperiencentral-root>/webmanager/webmanager-webapps/webmanager-backend-webapp/src/main/webapp/js/library/jquery/:

  • jquery.form.js is now jquery.form-4.3.0.patched.js
  • jquery-3.5.1.min.js is now jquery-3.6.1.min.js
  • jquery-ui-1.13.1.min.js is now jquery-ui-1.13.2.min.js

Angular and CSS Styling

Beginning in XperienCentral R39.0, GX Software recommends that you prevent Angular panels from rendering inline CSS styling. You should configure your Content Security Policy to block this. In Angular version 12, the so called "critical CSS" is rendered inline by default. This can be changed easily by setting the inlineCritical option in your build to false. For more information see [https://0xdbe.github.io/AngularSecurity-DisableInlineCriticalCSS/].

Java Min/Max Version

In XperienCentral R39, Java 17 is the minimum and maximum supported version.

Password Requirements

The password strength requirements have been modified in XperienCentral R39. A password must now contain 12 or more characters. While existing passwords will still work after upgrading to R39, GX Software recommends that you encourage your users to change their password after upgrading.

Remove the XML Parser Plugin

After upgrading to XperienCentral R39, you should manually remove the "GX WebManager - XML Parser" plugin to avoid errors in the log. See Plugins Management Console.

The wmedit: button tag

The wmedit:button tag in JSp's now has a required id attribute. Any custom functionality that uses this tag should be updated to provide a unique id value.

Content Security Policy configuration

A Content Security Policy is used to let the user’s browser know from which location resources, like Javascript or CSS, can be loaded. XperienCentral now supports configuration of a CSP within XperienCentral itself. Configuration takes places via the Content Security Configuration panel, found in the main menu under Application Tools.

Disabling the Content Security Policy Filter

The filter that adds both the CSP header and the nonces (if applicable) can be bypassed when starting XperienCentral. This can be used if the CSP is configured on Apache HTTPD for example or when you are accidentally locked out of XperienCentral due to a CSP misconfiguration.

For more information on Content Security Policy configuration see https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP


HTML
<br /><br /><br /><br /><br /><br /><br /><br />


...