The Ortus BlogBox

"Ortus: A rise, beginning, coming into being, born, the origin!"

 

 

Category Filtering: 'coldbox-mvc'

 

ColdBox Security v2.0.0 Released!

Luis Majano
Sep 27, 2019

 

We are so excited to release The ColdBox Security Module version 2.0.0. It has been quite a few years since we did a major version of our security module, but it is worth the wait. It is just easier to say we completely rewrote it in modern CFML and introduced modern Security practices, HMVC security to modules, annotation driven security and JWT token services. Never again write API security, we got you covered! We also completelty rewrote the documentation and now we have yet another awesome security book: https://coldbox-security.ortusbooks.com/

install cbsecurity
update cbsecurity

There are just too many things to talk about in this release, so we will just list out the major features and you can visit our docs for the complete rundown of ColdBox Security 2.0.0.

Introduction

The ColdBox cbsecurity module will enhance your ColdBox applications by providing out of the box security in the form of:

  • A security rule engine for incoming requests
  • Annotation driven security for handlers and actions
  • JWT (Json Web Tokens) generator, decoder and authentication services

Features

  • Ability to have global security rules
  • Ability for modules to add their own security rules and action overrides
  • Ability to distinguish between authentication and authorization issues
  • Annotation driven cascading security for handlers and actions
  • Security rules can exist in:
    • XML File
    • JSON File
    • Database
    • Models
  • The rules can be configured to use regular expressions or simple snippets
  • Can use ColdFusion authentication security
  • Can leverage any custom authentication provider
  • Plug any Authentication service or can leverage cbauth by default
  • Capability to distinguish between invalid authentication and invalid authorization and determine an outcome of the process.
  • Ability to load/unload security rules from contributing modules.
  • Ability for each module to define it's own validator
ColdBox MVC, ColdFusion, Interceptors, News, Releases, Security 0

TestBox v3.1.0 Released!

Luis Majano
Sep 27, 2019

 


We are excited to announce the release of TestBox version 3.1.0. To install just use CommandBox: install testbox --saveDev or to update your TestBox installation update testbox. So let's explore this release

ColdBox MVC, ColdFusion, Community, News, Releases, TestBox 0

swagger SDK and cbSwagger v2 Released!

Luis Majano
Sep 03, 2019

 

We are very excited to finally update our swagger modules to version 2: swagger-sdk, cbSwagger. This major version has tons of new features and improvements when documenting ColdBox APIs. However, the biggest features are that we now support the latest Open API Spec => v3.0.2 and we can export your documentation in either JSON or YAML. Check out the release notes below to see all the great new improvements.

Swagger SDK v2.0

This module allows for software development using the Swagger/OpenAPI specification.

box install swagger-sdk

v2.0.0

  • Open API 3.02 support instead of swagger
  • New template layout
  • Engine removals: lucee4.5, ACF10, ACF11
  • Upgraded jackson-core to latest v2.9.9
  • Upgraded snakeyaml to latest v1.24
  • Added more tests
  • Added ability to chain methods on all methods that where void before.
  • document.asYAML() is not fully implemented so you can convert the document to yaml.
  • Upgraded createLinkedHashMap() to use new ACF structNew( "ordered" ) instead.

cbSwagger v2.0

This module automatically generates OpenAPI documenation from your configured application and module routes in either JSON or YAML by simply visiting /cbSwagger in your URL. Focus on building your APIs and document them with ease by simply annotating your handlers.

box install cbSwagger

v2.0.0

  • feature: Upgraded to swagger-sdk 2.0.0 to support OpenAPI 3.0.x. A great guide on migrating is here: https://blog.readme.io/an-example-filled-guide-to-swagger-3-2/

  • Migrated cbSwagger settings to the moduleSettings struct instead of top-level in the config/ColdBox.cfc. Make sure you move your settings.

  • feature : You can now pass a format to the /cbSwagger endpoint to either get the OpenAPI doc as json or yml. Eg: /cbswagger?format=yml

  • feature : You have two distinct routes for the json and yml formats: /cbSwagger/json and /cbSwagger/yml

  • You can choose your default output format via the module settings: defaultFormat setting. Valid options are json and yml

  • features : Support for ColdBox 5 event routing and response routing.

  • improvement : You can now tag your handlers with a displayName that will be used for operation ID building

  • improvement : Improved the way operation Ids are reported so they can be unique when reusing handler actions.

  • improvement : Refactored createLinkedHashMap() -> structNew( "ordered" )

  • improvement: Removed lucee 4.5, acf11 support.

ColdBox MVC, ColdFusion, Releases, REST 0

ColdBox 5.6.0 Released!

Luis Majano
Aug 16, 2019

 

We are very excited to announce the release of ColdBox version 5.6.0 alongside all the companion standalone libraries: WireBox, LogBox and CacheBox.

What's New With 5.6.0

ColdBox 5.6.0 is a minor version update with lots of fixes, improvements, performance enhancements and some nice new features. Below are the major areas of improvement and the full release notes. To update ColdBox or any of the standalone libraries just leverage CommandBox:

  • update coldbox
  • update logbox
  • update wirebox
  • update cachebox

Major Updates

Performance

We had two specific tickets that have resulted in extreme performance improvements for ALL ColdBox requests. You will feel and see the difference:

  • [COLDBOX-799] - Event Handler Bean: Single instance per handler action for major performance improvements

This ticket was contributed by Dom Watson (https://twitter.com/dom_watson) one of the lead engineers of the amazing PresideCMS project built on top of ColdBox. We worked together to avoid the creation of handler beans on each runnable event. We now cache each event handler bean representation which results in an extreme boost in performance. Thanks Dom!

  • [COLDBOX-810] - Remove afterInstanceAutowire interceptor in handlerService as afterHandlerCreation is now officially removed.

Thanks to our local mad scientist Brad Wood, he reported that the handler services still listened to ALL CFC creations in an application in order to relay an afterHandlerCreation interception point from the good 'ol 2.6 days. This has been finally removed and boom, another big boost in performance!

Better Bug Reports

We have enhanced the bug reporting templates to include much more information when dealing with exceptions:

  • Show SQL error details on Adobe CF
  • Current route, params and debug info
  • Contributing module for the current routed URL

Merging of HTTP Verbs

Thanks to our very own Eric Peterson, you can now merge HTTP verbs on the same route pattern, which you could not do before:

router
    .post( "photos/", "photos.create" )
    .get( "photos/", "photos.index" )
    .delete( "photos/", "photos.remove" );

ColdBox Core Release Notes

Bugs

  • [COLDBOX-778] - ModuleService to add default route doesn't work correctly
  • [COLDBOX-794] - Fix default bug report to show SQL error detail for adobe SQL exceptions
  • [COLDBOX-796] - When doing package resolving if you are in a module it still tries to resolve a module
  • [COLDBOX-806] - Error in HTML helper WRAPPERATTRS doesn't exist in argument scope
  • [COLDBOX-811] - Include the colon for non 80 or 443 port numbers #419 in github

New Features

  • [COLDBOX-812] - Allow merging of HTTP verbs when doing separate verbs for the same route
  • [COLDBOX-813] - Update cfconfig to use env variables instead of inline mixins, modernizeOrDie

Improvements

  • [COLDBOX-795] - Add more current route information to the BugReport.cfm template
  • [COLDBOX-797] - Ability for bug reports and app to know which module contributed the incoming URL route.
  • [COLDBOX-798] - Use of .keyExists() can needlessly use memory in requests, suggest StructKeyExists() instead
  • [COLDBOX-799] - Event Handler Bean: Single instance per handler action for major performance improvements
  • [COLDBOX-800] - HandlerService.cfc$newHandler(): declares variables that are never used
  • [COLDBOX-810] - Remove afterInstanceAutowire interceptor in handlerService as afterHandlerCreation is now officially removed.

CacheBox Release Notes

Bugs

  • [CACHEBOX-56] - AbstractCacheProvider.getOrSet(): local var unscoped when checking if null
CacheBox, ColdBox MVC, ColdFusion, LogBox, News, Releases, WireBox 0

ColdBox 5.5.0 Released!

Luis Majano
Jun 14, 2019

 

What's New With v5.5.0

We are very excited to bring you ColdBox Platform v5.5.0! This is a minor release packed with a punch of improvements and some cool new features. The major libraries upgraded are ColdBox MVC and WireBox in this release.

CacheBox, ColdBox MVC, ColdFusion, LogBox, News, Releases, WireBox 0

Support Open Source via new Patreon Levels and Rewards

Luis Majano
Jun 13, 2019

 

We are excited to release our new patreon levels and rewards over at !

Sponsor Us
 

At Ortus Solutions we are known for building open source projects for the ColdFusion (CFML) community such as ColdBox, CommandBox, ContentBox Modular CMS, ForgeBox and many more. All of those products are licensed under the Apache 2 license and are completely FREE to use and extend.

However, the amount of effort needed to maintain and develop new features for all projects is not sustainable without proper financial backing. This is where you can come in and help support Ortus Open Source Software by pledging on Patreon. We have completely revamped all our patreon levels and refreshed all the rewards for those that share and give!

In a recent study done by Harvard University, it was proven that the act of giving and generosity would ensue happiness! Don't beleive me, check this article out: https://news.harvard.edu/gazette/story/2008/04/money-spent-on-others-can-buy-happiness/. So actually supporting our Open Source Initiatives will bring you happiness!


If you run a business and are using Ortus Open Source software in a revenue generating product or service, it makes sense to sponsor Ortus Open Source Software development: it ensures the project that your product/services use stays healthy and actively maintained. If you are an individual user and have enjoyed the productivity of our Open Source Software tools, consider donating as a sign of appreciation.


Sponsor Us
 

CacheBox, CFCouchbase, ColdBox MVC, ColdFusion, CommandBox, Community, ContentBox CMS, Elixir, ForgeBox, LogBox, News, Relax, WireBox 0

CFSummit 2019 Training Bootcamps

Luis Majano
May 30, 2019

 

  


We are excited to bring our training Bootcamp series as a post-conference workshop for this year Adobe ColdFusion Summit 2019 in Las Vegas, NV. Please note, that our training this year is AFTER the conference. This training series will be led by Box creator Luis Majano and ContentBox Evangelist Gavin Pickin. Register as soon as possible as space is very limited!

ColdBox MVC, Community, Events, News, Training 0

Quick v2.0.0 Released!

Eric Peterson
Apr 30, 2019

 


We are pleased to announce the general availability of Quick 2.0.0. It's been a long road with 14 betas(!) and months of testing from dedicated users. The end result is a more refined and performant product. Come check out the headline features.

 

Comments are currently closed
ColdBox MVC, ColdFusion, Community, Modules, News, Releases

TestBox v3.0.0 Released!

Luis Majano
Apr 25, 2019

 


We are excited to announce the release of TestBox version 3.0.0. To install just use CommandBox: install testbox --saveDev or to update your TestBox installation update testbox. So let's explore this release

ColdBox MVC, ColdFusion, Community, News, Releases, TestBox 0

ColdBox 5.4.0 Released!

Luis Majano
Apr 22, 2019

 

What's New With v5.4.0

We are very excited to bring you ColdBox v5.4.0! This should have been a major release on it's own but since we kept compatibility we are labeling it as a minor release. Below are the major areas of improvement and the full release notes. To update your installations just issue the commands below with CommandBox:

  • update coldbox - Update ColdBox Platform
  • update logbox - Update standalone LogBox
  • update wirebox - Update standalone WireBox
  • update cachebox - Update standalone CacheBox

Major Areas Of Improvement

Keep reading!

CacheBox, ColdBox MVC, ColdFusion, LogBox, News, Releases, WireBox 0