Page History
CSS Stylesheet |
---|
.issuekey {
white-space: nowrap;
} |
Previous release notes of 8.1.0
...
Fixes and improvements in this release:
Cross-Site Scripting (XSS):
The big item for this release is that we changed the way servoy displays and execute html with javascript for
the webclient and ngclient, see these 2 wike pages also for settings and usefull infohttps://wiki.servoy.com/pages/viewpage.action?pageId=23397000
https://wiki.servoy.com/display/DOCS/Security+
Cross-Site Scripting
Admin page security settings
By default now servoy will not allow javascript or other dangerous html things to be inserted into labels or html area's as is.
It will sanatize (strip) the html of that. You can override these setting on various level, the best way is to do it on element level, try to avoid setting it on solution level or on all solutions (through the admin page setting)
Because then you really need to be sure that all data that you show in html area's or labels are coming from trusted sources (like pure design time values) that they are not coming from data.
...
In memory foundsets:
Design time foundsets are now auto created (with no data) if just used before creating it with: dataset.createDataSource()
databaseManager.dataSourceExists() will always return true for design time based in memory datasources
...
Components |
---|
...