[MGNLUI-3984] Update Apache Commons HttpClient library Created: 15/Aug/16  Updated: 05/Dec/16  Resolved: 15/Sep/16

Status: Closed
Project: Magnolia UI
Component/s: None
Affects Version/s: None
Fix Version/s: 5.4.10

Type: Task Priority: Neutral
Reporter: Michael Matzke Assignee: Cedric Reichenbach
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Relates
relates to MAGNOLIA-5972 Update apache commons libraries Closed
relates to MAGNOLIA-6767 Update org.apache.httpcomponents:http... Closed
Template:
Acceptance criteria:
Empty
Task DoR:
Empty
Date of First Response:
Sprint: Basel 61
Story Points: 2

 Description   

Magnolia 5.4 defines httpclient 4.3.5 as the managed version.

When running Magnolia 5.4.8 with httpclient 4.5, the Magnolia login form is broken (submitting the form with valid or invalid credentials always causes an exception).

When running Magnolia 5.4.8 with httpclient 4.5.2, which currently seems to be the latest, in addition to the login form also the Magnolia page app is broken (double click doesn't open page detail anymore).

Since httpclient is one of Apache's most frequently used frameworks (e.g. used in other common SOAP clients and server libraries, REST, and numerous custom communication solutions), Magnolia should be compatible with a recent version to give other libraries and user code the opportunity to work with the full feature range offered.
As aforementioned bugs indicate, httpclient versions are not fully compatible with each other in aspects that are important to Magnolia, so attempting to support several versions of httpclient alongside may be a difficult task. It might be the better choice to entirely update the managed version to the most recent version of httpclient for Magnolia 5.5.



 Comments   
Comment by Michael Mühlebach [ 12/Sep/16 ]

Update has been done with DEV-268 (MAGNOLIA-6767). Task of this issue is to validate the impact on MGNLUI.

Comment by Philip Mundt [ 12/Sep/16 ]

Backporting NPE guard in info.magnolia.cms.security.auth.login.FormLogin to 5.4.x should resolve underlying login problem (linking this issue with MAGNOLIA-6767).

Generated at Mon Feb 12 09:12:06 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.