v8.1.5

What's Changed

• Bump dev branch to 8.1.5-SNAPSHOT by @natechadwick in #1240
• Removed weak cipher: TLS_DH_RSA_WITH_AES_128_GCM_SHA256 by @rgarg24 in #1244
• Bump org.apache.cxf:cxf-core from 3.4.10 to 3.5.8 by @dependabot in #1242
• Bug#1191 - Importing-third-party-JS-and-CSS-incorrectly-during-import… by @ramdev1980 in #1245
• jvm.ini in jetty/base/start.d is throwing an error related to "xalan… by @rgarg24 in #1246
• Fixed issue related to dts metadata service not starting for mariadb … by @rgarg24 in #1248
• Files uploaded as File assets are inaccessible after 8.1.2 upgrade by @rgarg24 in #1252
• Fix DTS configuration saving issue post upgrade. by @natechadwick in #1255
• Fixed issue related to problems with duplicate nav templates after upgrade. by @rgarg24 in #1253
• Merge fixes from release branch by @natechadwick in #1256
• Fixed issue related to metadata service in linux by @rgarg24 in #1257
• Bump express from 4.17.3 to 4.19.2 in /cui by @dependabot in #1247
• #1251 - On publishing a site, there should be an option to exclude im… by @ramdev1980 in #1260
• Fixed issue Rich Text Editor displays HTML it should not-1262 by @rgarg24 in #1263
• #1258-Rich text Widget More Link Stopped Working Post Upgrade by @ramdev1980 in #1259
• #1251 - On publishing a site, there should be an option to exclude im… by @ramdev1980 in #1265
• Blog list fails to render with Invocation of method 'newInstance' error by @rgarg24 in #1266
• Bump org.bouncycastle:bcprov-jdk15to18 from 1.74 to 1.78 by @dependabot in #1264
• #1251 - On publishing a site, there should be an option to exclude im… by @ramdev1980 in #1268
• Made changes for CMS 8.1.5 release by @ramdev1980 in #1269
• merge branch development into release by @rgarg24 in #1271

Full Changelog: v8.1.4.2...v8.1.5

v8.1.4.2

Updated 3/27/24
Full Changelog: v8.1.4.1...v8.1.4.2

What's Changed

8.1.4 is a release update that includes minor enhancements, bug fixes, and security updates since the 8.1.3 release update was released.

Information on enhancements, and how to install / upgrade Percussion CMS can be found on the Help site.

Enhancements

• Revision Comparison - An improvement was made to the Page Revisions Dialog to allow for comparison of text between revisions.

• Support for RHEL 8.1 - The release has been tested on RHEL 8.1.

• Siteimprove - Skip Assets - The Siteimprove integration now supports the option to skip notification of Assets for crawling on publish.

• Improved Page filename validation. Validation has been improved to prevent users from creating new Pages that have file extensions that can't be served by web servers. Validation is based on supported mime types / page file extensions.

• Live First Site Import Updated. A number of improvements were made to Site / Template import from URL including better handling of external JS / CSS resources, image asset handling and page cataloging.

• Improved Web Browser Screenshot / Thumbnail support. As part of a security update, the Page / Template screenshot processing has been updated to take advantage of the built-in support for screenshots provided by all major web browsers.

Bug Fixes

#1104 Performance: Folder Relationship Cache is Showing Duplicate Entries for Child Relationships
#721 - Performance: Incremental publish dialog does not come up if there are too many items in the queue
#1228 - Display HTML is blank under Widget Builder until it is clicked
#1223 - help.percussion.com links in UI fail with an SSL error
#1220 - Issue starting metadata service after update with DTS configured to run against Linux MySQL
#1215 - Create Page From Template Fails if meta description is longer than 500 characters
#1205 - All Images are not uploading while importing a site.
#1201 - Form Widget posts to 1st configured production DTS server instead of default publishing server DTS
#1198 - Unable to remove published Asset using the "Remove from Site" menu
#1191 - Importing third party JS and CSS incorrectly during import site functionality
#1181 - Site Import Process is creating pages for External Links in the pages, should only be doing for link in the same domain that is being imported.
#1150 Page Auto List is not showing the Month name with selected locale.
#1148 - jvm.ini in jetty/base/start.d is throwing an error related to "xalan" in case of upgrading the CMS version
#832 Session doesn't time out and User session extension option also not available to user application wide
#1125 - Uploading a PNG with a JPG file extension errors out when running server on Open JDK
#1118 - Temp directory used by publishing is not using the value set in java.io.tmpdir
#1116 - Restore Revision button is not disabled when action triggered thus allowing user to click multiple times triggering multiple restore revision API calls at same time.
#1111 - DevTools: Workbench - Unable to create a new Folder in content design view
#1097 - Navigation Tab - After rearranging the items sequence, if user move to other item/tab and come back, the sequence is lost.
#1073 - Rich Text Editor: Inset menu fails to load if the rxinline plugin is included in the configuration
#1070 - Directory Widget: When the div#perc-directory-alphabet-sort is styled to display:none directory fails to load with JavaScript Error
#1059 - Upgrade issue: Old versions of JDBC libraries are not removed on upgrade
#950 - Hidden buttons in Rich text Editor Source Code dialog
#904 - Green drag + drop indicator on widget slots doesn't always display
#891 - Restoring a revision in quick edit state updates the "Last Modified" time on the original revision
#659 - File based publishing assembles content with a file size of 0 bytes and incorrectly delivers the content successfully when out of disk space
#577 - Need better messaging when attempting to delete the default publishing server.
#560 Metadata editing of a template - Under the "Additional Code" section, the additional HTML fields of a template should have a color coded text editor to validate the code.

Accessibility Updates

#826 Web page is not being navigated sequentially with the Tab key at Navigation screen.

Security Updates

#1226 - Update to the latest version of Jetty / Tomcat prior to releasing 8.1.4
#1219 - Remove weak cipher: TLS_DH_RSA_WITH_AES_128_GCM_SHA256
#1167 - Refactor the unsupported phantomjs dependencies from the perc-thumbnail module
#1007 - Refactor classes to use commons collection 4 as collections 3 is flagged as vulnerable
#1035 - Bump Microsoft SQL Server database driver version

Full Changelog: v8.1.3.6...v8.1.4

v8.1.3

Updated 10/5/23

• Fix #1097 - Navigation Tab - After rearranging the Sections, if the user moves to another Section and goes back to the moved section, the change to the Section order is lost.
• Fix #1104 - Folder Relationship Cache is Showing Duplicate Entries for Child Relationships
• Correction to installation steps in Contributing guide
• Fix #891 - Restoring a revision in quick edit state updates the "Last Modified" time on the original revision

Updated 9/26/23

• Fix #1102 - DTS Metadata service fails to start when using Apache Derby or Microsoft SQL Server as the backend.
• Fix #1087 - After upgrade some links and images appear broken and publish with /Rhythmyx urls

What's Changed

8.1.3 is a release update that includes minor enhancements, bug fixes, and security updates since the 8.1.2 release update was released. Information on how to install / upgrade Percussion CMS can be found on the Help site.

Notable Enhancements

• Keyboard accessibility is improved across many screens in the UI
• Updated Accessibility VPAT with issue links
• Code formatting in HTML editors improved
• TinyMCE Templates plugin is now turned on by default.
• Improved backend HTML and Link processing in Rich Text / HTML widgets.
• Full Text re-indexing no longer happens on startup, or on first start up post upgrade.

Notable Bug Fixes

• Fixed several bugs related to rich text content, where html could become corrupted or aria- and data- attributes were incorrectly getting stripped from content.
• Fixed an issue in Content Explorer was not enabling the Inline Link menu in the Tiny MCE Insert menu.
• Fixed a bug that prevented new Widget Builder widgets from being deployed.
• Fixed a bug that prevented new section links from being created in the Navigation Editor
• Fixed a bug where the Navigation widget would incorrectly render a section link that linked to its parent for however many levels of Navigation were configured.

Notable Security updates

• DTS Tomcat version bumped to 9.79
• CMS Jetty bumped to 9.4.51.v20230217
• Many dependencies were version bumped to clear security warnings

Please see the full changelog for the complete list of changes.

Full Changelog: https://github.com/percussion/percussioncms/commits/v8.1.3

v8.1.2.1-PATCH-8-2-2023

This patch contains 3 additional updates to the previous patch, and also includes updates that were included with the prior patch.

• An additional case was corrected that could cause <html><head/><body/> elements to get added to content while editing.
• An issue was fixed that prevented the deletion of folders that were previously converted from Navigation section to folders.
• The patch install scripts were updated to minimize warnings on missing files, and to ensure that the rxutils-8.1.2.1.jar is correctly updated when running the install script.

NOTE: To avoid errors, before running the install script be sure the Percussion service is stopped and that you include the trailing \ or / on the path to the install root. e.g. install.bat C:\Percussion\ or ./install.sh /opt/Percussion/

v8.2.1.1-PATCH-7-7-23

This 8.1.2.1 patch release provides a mix of security updates and bug fixes to the 8.1.2 release version of PercussionCMS. This update is only applicable to the 8.1.2 release version. All updates in this "hotfix" will be included in the 8.1.3 release version.

---

Bug Fixes

• CMS #955 Remove data-pathitem attribute from image and anchor tags.
  The data-pathitem attribute on links in Rich Text fields was removed from the system in the 8.1 version to shorten the link text. A bug was discovered post upgrade, where existing content that had this attribute could cause HTML parsing / encoding errors on edit. This update will remove the problem attribute from any links as content is published and edited. System attributes for Managed / Inline links will also no longer be generated in the published content after this update.

• CMS #943 html head and body tags wrap rich text content on edit
  Link processing was updated in the 8.1 version to use a more current HTML parser. A bug was found post release where rich text fields / fields configured for Inline Link Processing were incorrectly "wrapping" html tags around the Rich Text div on publish. This causes unexpected formatting issues in the published content. This update will remove the extra / unwanted markup. We recommend a full publish after patching to correct this issue if it is affecting you. Previous revisions of content may still have the incorrect formatting. To correct those a database query may need to be run on your backend content repository. Please reach out to [email protected] if you need technical assistance with that update.

Note that Page Summary in Page Metadata, Blog Post, Forms and widgets with Rich Text fields, Inline Link Fields on custom Content Types were all affected by this issue if the content was edited post upgrade.

• CMS #890 WARNING: Problem finding the navon - probably previewing a managed nav slot outside of a site is unclear.

A new warning is showing up post upgrade that does not include the id or template of the Page that is being logged. After the update, the page GUID and template name will be listed. This warning is typically logged for Pages that have a Navigation component on the Page or Template, but the Page does not exist in a Navigation section so the Nav component can't be rendered. Future updates may convert this warning into a debug statement. Quieting this warning in the logs can be accomplished by adding the following to the /jetty/base/resources/log4j2.xml file, before the line:

    <AsyncLogger name="com.percussion.services.assembly.impl.finder.PSNavFinderUtils" level="off" includeLocation="true" additivity="false">
        <AppenderRef ref="CONSOLE"/>
        <AppenderRef ref="FILE"/>
    </AsyncLogger> 

• CMS #762 When Debug Tools are enabled: the SQL editor fails to load with a 500 error
  #762

A bug was fixed where when debug tools were enabled in the rxconfig/Server/server.properties file by setting enableDebugTools=true, the https://cmsurl/test/sql.jsp tool would fail to load. The patch resolves that issue. NOTE: We recommend that the debug tools be disabled for production systems, only enabled temporarily for troubleshooting or debugging by system administrators. If you turn debug tools on to validate the fix, please turn them off before re-scanning you server.

• CMS #851 Can't save workflow role permissions
  #851

  A bug was fixed that was preventing Admin's from editing the Workflow Role permissions. After the patch is applied, users should be able to edit Workflow Role permissions again in the PercussionCMS ui. NOTE: Rhythmyx Workflow Roles are not editable via the Percussion CMS UI and need to be updated in the legacy Workflow Editor or with the Server Administrator tool.

---

Security Updates

• Apache Shiro for CVE-2022-40664

A library used by the Dashboard components has been updated to mitigate the above CVE.

• Spring Security for CVE-2022-31692

A library used by the "Secure Sites" feature to add LDAP authentication to a Tomcat hosted website has been updated to mitigate the above CVE. This feature is only active if the secure sites feature is configured and the published web site is hosted with a Java application server like Apache Tomcat.

• Commons Text for CVE-2022-42889

A library used by various CMS components was updated to mitigate the above CVE.

---

Linux Installation

Replace with the path to your percussion cms installation below.

1. Download the patch zip file:

   wget

2. Move the patch to the patch folder under the Percussion installation tree:

   mkdir -p /Patch
   mv v8.1.2.1-PATCH-5-25-23.zip /Patch/

3. Uncompress the patch:
   cd /Patch/
   unzip v8.1.2.1-PATCH-5-25-23.zip

4. Stop the CMS service:

   service PercussionCMS stop
   ps -ef | grep jetty

5. Install the patch:
   cd v8.1.2.1-PATCH-5-25-23/
   chmod +x *.sh
   ./install.sh /

6. Start the CMS service:

   service PercussionCMS start

---

Windows Installation

1. Download the patch zip file

2. Extract the zip file to the \Patch folder. If the Patch folder does not exist, create it.

3. Start a Command Prompt as Adminstrator:

4. cd \Patch\v8.1.2.1-PATCH-5-25-23\

5. Stop the CMS service:
   net stop PercussionCMS

6. Install the patch:

install.bat \ (trailing backslash is required)

7. Start the CMS service:

net start PercussionCMS

---

List of Files Replaced:

The install.bat and install.sh scripts will try to automatically update the files listed below. The same operations can be performed manually in the event of a script error. In the list below, is the PercussionCMS installation directory, and is the directory that this patch was unzipped to.

---

Commons Text for CVE-2022-42889

• File: \sys_resources\webapps\secure\WEB-INF\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \jetty\defaults\lib\perc\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \rxconfig\SiteConfigs$log$\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

---

Updates to Spring Security for CVE-2022-31692

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-config-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-config-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-core-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-core-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-crypto-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-crypto-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-ldap-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-ldap-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-web-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-web-5.6.9.jar

---

Updates for Apache Shiro for CVE-2022-40664

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-cache-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-cache-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-ogdl-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-ogdl-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-cipher-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-cipher-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-hash-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-hash-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-event-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-event-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-lang-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-lang-1.10.0.jar

• File: <Install...

v8.1.2.1-PATCH-5-25-23

This 8.1.2.1 patch release provides a mix of security updates and bug fixes to the 8.1.2 release version of PercussionCMS. This update is only applicable to the 8.1.2 release version. All updates in this "hotfix" will be included in the 8.1.3 release version.

---

Security Updates

• Apache Shiro for CVE-2022-40664

A library used by the Dashboard components has been updated to mitigate the above CVE.

• Spring Security for CVE-2022-31692

A library used by the "Secure Sites" feature to add LDAP authentication to a Tomcat hosted website has been updated to mitigate the above CVE. This feature is only active if the secure sites feature is configured and the published web site is hosted with a Java application server like Apache Tomcat.

• Commons Text for CVE-2022-42889

A library used by various CMS components was updated to mitigate the above CVE.

---

Bug Fixes

• CMS #890 WARNING: Problem finding the navon - probably previewing a managed nav slot outside of a site is unclear.

A new warning is showing up post upgrade that does not include the id or template of the Page that is being logged. After the update, the page GUID and template name will be listed. This warning is typically logged for Pages that have a Navigation component on the Page or Template, but the Page does not exist in a Navigation section so the Nav component can't be rendered. Future updates may convert this warning into a debug statement. Quieting this warning in the logs can be accomplished by adding the following to the /jetty/base/resources/log4j2.xml file, before the line:

    <AsyncLogger name="com.percussion.services.assembly.impl.finder.PSNavFinderUtils" level="off" includeLocation="true" additivity="false">
        <AppenderRef ref="CONSOLE"/>
        <AppenderRef ref="FILE"/>
    </AsyncLogger> 

• CMS #762 When Debug Tools are enabled: the SQL editor fails to load with a 500 error
  #762

A bug was fixed where when debug tools were enabled in the rxconfig/Server/server.properties file by setting enableDebugTools=true, the https://cmsurl/test/sql.jsp tool would fail to load. The patch resolves that issue. NOTE: We recommend that the debug tools be disabled for production systems, only enabled temporarily for troubleshooting or debugging by system administrators. If you turn debug tools on to validate the fix, please turn them off before re-scanning you server.

• CMS #851 Can't save workflow role permissions
  #851

  A bug was fixed that was preventing Admin's from editing the Workflow Role permissions. After the patch is applied, users should be able to edit Workflow Role permissions again in the PercussionCMS ui. NOTE: Rhythmyx Workflow Roles are not editable via the Percussion CMS UI and need to be updated in the legacy Workflow Editor or with the Server Administrator tool.

---

Linux Installation

Replace with the path to your percussion cms installation below.

1. Download the patch zip file:

   wget

2. Move the patch to the patch folder under the Percussion installation tree:

   mkdir -p /Patch
   mv v8.1.2.1-PATCH-5-25-23.zip /Patch/

3. Uncompress the patch:
   cd /Patch/
   unzip v8.1.2.1-PATCH-5-25-23.zip

4. Stop the CMS service:

   service PercussionCMS stop
   ps -ef | grep jetty

5. Install the patch:
   cd v8.1.2.1-PATCH-5-25-23/
   chmod +x *.sh
   ./install.sh /

6. Start the CMS service:

   service PercussionCMS start

---

Windows Installation

1. Download the patch zip file

2. Extract the zip file to the \Patch folder. If the Patch folder does not exist, create it.

3. Start a Command Prompt as Adminstrator:

4. cd \Patch\v8.1.2.1-PATCH-5-25-23\

5. Stop the CMS service:
   net stop PercussionCMS

6. Install the patch:

install.bat \ (trailing backslash is required)

7. Start the CMS service:

net start PercussionCMS

---

List of Files Replaced:

The install.bat and install.sh scripts will try to automatically update the files listed below. The same operations can be performed manually in the event of a script error. In the list below, is the PercussionCMS installation directory, and is the directory that this patch was unzipped to.

---

Commons Text for CVE-2022-42889

• File: \sys_resources\webapps\secure\WEB-INF\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \jetty\defaults\lib\perc\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \rxconfig\SiteConfigs$log$\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.9.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\commons-text-1.10.0.jar

---

Updates to Spring Security for CVE-2022-31692

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-config-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-config-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-core-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-core-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-crypto-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-crypto-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-ldap-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-ldap-5.6.9.jar

• File: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-web-5.6.2.jar
  Replaced By: \sys_resources\webapps\secure\WEB-INF\lib\spring-security-web-5.6.9.jar

---

Updates for Apache Shiro for CVE-2022-40664

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-cache-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-cache-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-ogdl-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-config-ogdl-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-cipher-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-cipher-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-core-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-core-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-hash-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-crypto-hash-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-event-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-event-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-lang-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-lang-1.10.0.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-web-1.7.1.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\shiro-web-1.10.0.jar

---

Updates to Percussion application to resolve issues: #890, #762, #851...

• File: \jetty\base\webapps\Rhythmyx\test\sql.jsp
  Replaced By: \jetty\base\webapps\Rhythmyx\test\sql.jsp

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\perc-system-8.1.2.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\perc-system-8.1.2.1.jar

• File: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\sitemanage-8.1.2.jar
  Replaced By: \jetty\base\webapps\Rhythmyx\WEB-INF\lib\sitemanage-8.1.2.1.jar

v8.1.2

What's Changed

• Update README.md by @natechadwick in #1
• Fixing Testcases and other issues by @sonyDeswal in #2
• Fixing Rest Testcases by @sonyDeswal in #3
• Fresh Install breaking because of it. by @sonyDeswal in #4
• CMS-7656: Error restarting Jetty because of Double value in cache by @sonyDeswal in #5
• Merge for Git Hub Package testing by @natechadwick in #8
• Staging by @natechadwick in #9
• CMS-7665: Error starting Jetty on Nightly Build by @sonyDeswal in #10
• CMS-7666 : Feeds service fails to start with error as in description. by @vineetsingh0612 in #11
• Updating <CmsVersion max="9.0.0"..for psx_archiveInfo.xml for all wid… by @sonyDeswal in #12
• Fix CMS-7673 - upgrade from 5.3 to 8.0.0 fails with illegal argument … by @natechadwick in #13
• Update snapshots daily by @natechadwick in #14
• Ignore file RxBuild.log by @natechadwick in #15
• Backlog CMS-7676 - PSContainerUtilsFactoryTest - crashing with error … by @natechadwick in #16
• Adding @Nationalized and Fixing Auto Generated Value issue in Blog Likes by @sonyDeswal in #18
• CMS-7675 : 8.0.0 DTS upgrade prod & staging mysql-connector.jar missing after upgrade by @vineetsingh0612 in #17
• Updated SQl Server Hibernate Dialect to SQLServer2012Dialect by @sonyDeswal in #20
• CMS-7674 : 8.0.0 upgrade incorrectly replaces Tomcat with https.keystoreFile=conf/.keystore by @vineetsingh0612 in #19
• CMS-7686:Google Analytics is not working by @sonyDeswal in #22
• CMS-7684 : Editing Page Metadata to add Category thows Assembly Error by @vineetsingh0612 in #23
• Email Form does not send email on form submission by @sonyDeswal in #24
• Cms 7650: Allow placing of additional head content on pages/templates directly after tag by @sonyDeswal in #25
• CMS-7685: Some Gadgets are not Loading Site Name in the drop down as … by @sonyDeswal in #26
• CMS-7696 : Mini calendar is not working and throwing error in console by @vineetsingh0612 in #27
• All members are getting deleted from the Gadget if the user delete a … by @sonyDeswal in #28
• CMS-5112: Database publishing: Add database driver configurations by @sonyDeswal in #30
• Cms 7701 by @natechadwick in #29
• Cms 7701 by @natechadwick in #31
• Fix feed generation. Add missing runtime dependency on jdom2. by @natechadwick in #32
• 8.0.2 release by @natechadwick in #33
• CMS-7703: 500 Error in console for the gadgets dont have 'All Sites' … by @sonyDeswal in #34
• CMS-7652 - Workbench directory error - update handle non server side by @natechadwick in #37
• Cms 7723: INACAP DTS MetadataService get request fails with errors by @sonyDeswal in #36
• CMS-76748.0.0 upgrade incorrectly replaces Tomcat with https.keystore… by @sonyDeswal in #35
• CMS-7722:SocialButtons:For twitter widget on Editor and Live page, Ti… by @sonyDeswal in #39
• Fixing Metadata liquibase changes to make nvarchar for perc_page_Meta… by @sonyDeswal in #41
• Cms 7722 by @natechadwick in #42
• CMS-7722 : SocialButtons:For twitter widget on Editor and Live page, Tiny square mark is getting displayed instead of Twitter logo. by @vineetsingh0612 in #43
• added check for topLevelNodes in the category.xml by @matomario8 in #40
• CMS-7739 : User is not able to do Incremental Publish on INACAP environment by @vineetsingh0612 in #44
• Disable QueryHints as some drivers (MySQL / MSSQL) fail to handle them by @natechadwick in #45
• Temporarily disable GitHub Actions. by @natechadwick in #46
• Fixing Staging Upgrade and Drop Metadata tables. by @sonyDeswal in #47
• Security refactoring by @natechadwick in #21
• Re-enable GH maven action. by @natechadwick in #48
• Security refactoring by @natechadwick in #49
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #50
• CMS-7697 : Upgrading CM1 AFTER upgrading DTS causes all DTS / Staging DTS *.sh scripts to incorrectly be removed by @vineetsingh0612 in #51
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #53
• Replace SimpleDateFormat with FastDateFormat (thread safety) by @natechadwick in #55
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #54
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #57
• Error Starting Jetty by @sonyDeswal in #56
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #59
• Fixing Staging upgrade bugs by @sonyDeswal in #58
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #60
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #61
• CMS-7732 : Event Widget disappear and throwing error on the layout ta… by @vineetsingh0612 in #62
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #63
• Closing Open Streams by @sonyDeswal in #64
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #65
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #66
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #67
• clean up javascript warnings by @matomario8 in #68
• CMS-7800 : Broken link gets displayed instead of Image on Editor wher… by @vineetsingh0612 in #71
• made additional updates to javascript services by @matomario8 in #69
• Bump xstream from 1.4.15 to 1.4.16 by @dependabot in #73
• CMS-7865 : Publish now button usable by Contributors and other roles by @vineetsingh0612 in #74
• CMS-7864 : Restoring folder from recycle bin breaks Navigation widget links by @vineetsingh0612 in #75
• CMS-7864 : Restoring folder from recycle bin breaks Navigation widget links by @vineetsingh0612 in #76
• Bump guava from 24.1.1-jre to 29.0-jre by @dependabot in #77
• CMS-7885 : EMS Event widget is not editable by @vineetsingh0612 in #80
• javascript fixes & made 'www.' optional in social button links by @matomario8 in #79
• CMS-7865 : Publish now button usable by Contributors and other roles by @vineetsingh0612 in #84
• CMS_7800_7914_7915 by @vineetsingh0612 in #86
• CMS_7800_7914_7915 by @vineetsingh0612 in #87
• CMS-5033 : Users with no Role Memberships are still a...

v8.0.3.124

Overview

This is the final release of the 8.0.3 version.

What's Changed

• Update README.md by @natechadwick in #1
• Fixing Testcases and other issues by @sonyDeswal in #2
• Fixing Rest Testcases by @sonyDeswal in #3
• Fresh Install breaking because of it. by @sonyDeswal in #4
• CMS-7656: Error restarting Jetty because of Double value in cache by @sonyDeswal in #5
• Merge for Git Hub Package testing by @natechadwick in #8
• Staging by @natechadwick in #9
• CMS-7665: Error starting Jetty on Nightly Build by @sonyDeswal in #10
• CMS-7666 : Feeds service fails to start with error as in description. by @vineetsingh0612 in #11
• Updating <CmsVersion max="9.0.0"..for psx_archiveInfo.xml for all wid… by @sonyDeswal in #12
• Fix CMS-7673 - upgrade from 5.3 to 8.0.0 fails with illegal argument … by @natechadwick in #13
• Update snapshots daily by @natechadwick in #14
• Ignore file RxBuild.log by @natechadwick in #15
• Backlog CMS-7676 - PSContainerUtilsFactoryTest - crashing with error … by @natechadwick in #16
• Adding @Nationalized and Fixing Auto Generated Value issue in Blog Likes by @sonyDeswal in #18
• CMS-7675 : 8.0.0 DTS upgrade prod & staging mysql-connector.jar missing after upgrade by @vineetsingh0612 in #17
• Updated SQl Server Hibernate Dialect to SQLServer2012Dialect by @sonyDeswal in #20
• CMS-7674 : 8.0.0 upgrade incorrectly replaces Tomcat with https.keystoreFile=conf/.keystore by @vineetsingh0612 in #19
• CMS-7686:Google Analytics is not working by @sonyDeswal in #22
• CMS-7684 : Editing Page Metadata to add Category thows Assembly Error by @vineetsingh0612 in #23
• Email Form does not send email on form submission by @sonyDeswal in #24
• Cms 7650: Allow placing of additional head content on pages/templates directly after tag by @sonyDeswal in #25
• CMS-7685: Some Gadgets are not Loading Site Name in the drop down as … by @sonyDeswal in #26
• CMS-7696 : Mini calendar is not working and throwing error in console by @vineetsingh0612 in #27
• All members are getting deleted from the Gadget if the user delete a … by @sonyDeswal in #28
• CMS-5112: Database publishing: Add database driver configurations by @sonyDeswal in #30
• Cms 7701 by @natechadwick in #29
• Cms 7701 by @natechadwick in #31
• Fix feed generation. Add missing runtime dependency on jdom2. by @natechadwick in #32
• 8.0.2 release by @natechadwick in #33
• CMS-7703: 500 Error in console for the gadgets dont have 'All Sites' … by @sonyDeswal in #34
• CMS-7652 - Workbench directory error - update handle non server side by @natechadwick in #37
• Cms 7723: INACAP DTS MetadataService get request fails with errors by @sonyDeswal in #36
• CMS-76748.0.0 upgrade incorrectly replaces Tomcat with https.keystore… by @sonyDeswal in #35
• CMS-7722:SocialButtons:For twitter widget on Editor and Live page, Ti… by @sonyDeswal in #39
• Fixing Metadata liquibase changes to make nvarchar for perc_page_Meta… by @sonyDeswal in #41
• Cms 7722 by @natechadwick in #42
• CMS-7722 : SocialButtons:For twitter widget on Editor and Live page, Tiny square mark is getting displayed instead of Twitter logo. by @vineetsingh0612 in #43
• added check for topLevelNodes in the category.xml by @matomario8 in #40
• CMS-7739 : User is not able to do Incremental Publish on INACAP environment by @vineetsingh0612 in #44
• Disable QueryHints as some drivers (MySQL / MSSQL) fail to handle them by @natechadwick in #45
• Temporarily disable GitHub Actions. by @natechadwick in #46
• Fixing Staging Upgrade and Drop Metadata tables. by @sonyDeswal in #47
• Security refactoring by @natechadwick in #21
• Re-enable GH maven action. by @natechadwick in #48
• Security refactoring by @natechadwick in #49
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #50
• CMS-7697 : Upgrading CM1 AFTER upgrading DTS causes all DTS / Staging DTS *.sh scripts to incorrectly be removed by @vineetsingh0612 in #51
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #53
• Replace SimpleDateFormat with FastDateFormat (thread safety) by @natechadwick in #55
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #54
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #57
• Error Starting Jetty by @sonyDeswal in #56
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #59
• Fixing Staging upgrade bugs by @sonyDeswal in #58
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #60
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #61
• CMS-7732 : Event Widget disappear and throwing error on the layout ta… by @vineetsingh0612 in #62
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #63
• Closing Open Streams by @sonyDeswal in #64
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #65
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #66
• CMS-7737 : Replace the type specification in this constructor call wi… by @vineetsingh0612 in #67
• clean up javascript warnings by @matomario8 in #68
• CMS-7800 : Broken link gets displayed instead of Image on Editor wher… by @vineetsingh0612 in #71
• made additional updates to javascript services by @matomario8 in #69
• Bump xstream from 1.4.15 to 1.4.16 by @dependabot in #73
• CMS-7865 : Publish now button usable by Contributors and other roles by @vineetsingh0612 in #74
• CMS-7864 : Restoring folder from recycle bin breaks Navigation widget links by @vineetsingh0612 in #75
• CMS-7864 : Restoring folder from recycle bin breaks Navigation widget links by @vineetsingh0612 in #76
• Bump guava from 24.1.1-jre to 29.0-jre by @dependabot in #77
• CMS-7885 : EMS Event widget is not editable by @vineetsingh0612 in #80
• javascript fixes & made 'www.' optional in social button links by @matomario8 in #79
• CMS-7865 : Publish now button usable by Contributors and other roles by @vineetsingh0612 in #84
• CMS_7800_7914_7915 by @vineetsingh0612 in #86
• CMS_7800_7914_7915 by @vineetsingh0612 in https://github.com/percussion/percussioncms...

v8.0.3

Please see the release notes at https://help.percussion.com/percussioncms/releases/percussion-cms-8.0.3-release/

v8.0.2.9

Release notes - Percussion CMS - Version 8.0.2.9

Bugs Fixed

• CMS-7771 Staging 'perc-catalina.properties' file is not showing all properties after upgrading from 5.3 to 8.0.2.8
• CMS-7768 Production Port is showing in Staging DTS if 5.4 is upgraded to 8.0 or 8.0 to 8.0
• CMS-7762 Upgrading DTS Production/Staging from 5.3 to 8.0.2.3 fails for MSSQL
• CMS-7752 For Linux while upgrading from 5.3 to 8.0.2.1 DTS console is throwing error i.e. DTS Installation encountered errors whereas install logs shows Build successfully.
• CMS-7748 DTS mysql upgrade- DTS Installation is getting failed while upgrading from 5.3 to 8.0.2, wherein CMS, DTS and Staging all are in different directories.
• CMS-7732 Event Widget disappears and throws error on the layout tab after saving the data.
• CMS-7719 Jetty Service Install is not creating dir to store PID as a result jettyStart has error at startup and no way to stop service as PID is not stored
• CMS-7674 8.0.0 upgrade incorrectly replaces Tomcat with https.keystoreFile=conf/.keystore