From 8b23a0346d7a7c42bb3bae317859c4fcd87234ec Mon Sep 17 00:00:00 2001 From: abhinavgandham Date: Sun, 2 Mar 2025 16:01:45 +1000 Subject: [PATCH 1/9] DOC-3150: TinyMCE 7.7.1 Release Documentation and Community Changelog. --- modules/ROOT/pages/7.7.1-release-notes.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index dfbab4ee25..72823be65a 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -56,7 +56,7 @@ For information on using Enhanced Skins & Icon Packs, see: xref:enhanced-skins-a [[bug-fixes]] == Bug fixes -{productname} {release-version} also includes the following bug fix: +{productname} {release-version} also includes the following bug fixes: === // #TINY-vwxyz1 From 9453f7016d6816aec803637297f2f372e815e92b Mon Sep 17 00:00:00 2001 From: "CODE:AG" <57781325+abhinavgandham@users.noreply.github.com> Date: Tue, 4 Mar 2025 09:34:04 +1000 Subject: [PATCH 2/9] DOC-3150: Skin UI content CSS was truncated when bundling, causing CSS styles to be missing. (#3638) * DOC-3150: Skin UI content CSS was truncated when bundling, causing CSS styles to be missing. * Update modules/ROOT/pages/7.7.1-release-notes.adoc Co-authored-by: Karl Kemister-Sheppard --------- Co-authored-by: Karl Kemister-Sheppard --- modules/ROOT/pages/7.7.1-release-notes.adoc | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index 72823be65a..b584e37727 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -58,10 +58,12 @@ For information on using Enhanced Skins & Icon Packs, see: xref:enhanced-skins-a {productname} {release-version} also includes the following bug fixes: -=== -// #TINY-vwxyz1 +=== Skin UI content CSS was truncated when bundling, causing CSS styles to be missing. +// #TINY-11875 -// CCFR here. +In {productname} {release-version}, an issue was identified where skin content CSS was truncated during the build process when bundling CSS files into JavaScript resources. This caused invalid styles, leading to partial or complete loss of CSS in the editor UI for self-hosted setups, which resulted in broken styling and reduced usability. + +This issue has been resolved in {productname} {release-version}. The bundling process now correctly incorporates CSS styles into the generated JavaScript resources, preventing truncation and ensuring consistent styling across the editor UI. [[known-issues]] From 840527265302993f833ee367990c32bc7b824690 Mon Sep 17 00:00:00 2001 From: "CODE:AG" <57781325+abhinavgandham@users.noreply.github.com> Date: Tue, 4 Mar 2025 11:47:51 +1000 Subject: [PATCH 3/9] Update modules/ROOT/pages/7.7.1-release-notes.adoc --- modules/ROOT/pages/7.7.1-release-notes.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index b584e37727..5f1981d588 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -61,7 +61,7 @@ For information on using Enhanced Skins & Icon Packs, see: xref:enhanced-skins-a === Skin UI content CSS was truncated when bundling, causing CSS styles to be missing. // #TINY-11875 -In {productname} {release-version}, an issue was identified where skin content CSS was truncated during the build process when bundling CSS files into JavaScript resources. This caused invalid styles, leading to partial or complete loss of CSS in the editor UI for self-hosted setups, which resulted in broken styling and reduced usability. +Previously in {productname}, an issue was identified where skin content CSS was truncated during the build process when bundling CSS files into JavaScript resources. This caused invalid styles, leading to partial or complete loss of CSS in the editor UI for self-hosted setups, which resulted in broken styling and reduced usability. This issue has been resolved in {productname} {release-version}. The bundling process now correctly incorporates CSS styles into the generated JavaScript resources, preventing truncation and ensuring consistent styling across the editor UI. From 01eec6c28adb79c2b5a047450388e56b50c198bf Mon Sep 17 00:00:00 2001 From: abhinavgandham Date: Tue, 4 Mar 2025 15:51:31 +1000 Subject: [PATCH 4/9] Updated changelog with 7.7.1 entries. --- modules/ROOT/pages/changelog.adoc | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/modules/ROOT/pages/changelog.adoc b/modules/ROOT/pages/changelog.adoc index 38caaf4a48..94d171e5fb 100644 --- a/modules/ROOT/pages/changelog.adoc +++ b/modules/ROOT/pages/changelog.adoc @@ -4,6 +4,14 @@ NOTE: This is the {productname} Community version changelog. For information about the latest {cloudname} or {enterpriseversion} Release, see: xref:release-notes.adoc[{productname} Release Notes]. +== xref:7.7.1-release-notes.adoc[7.7.1 - 2025-03-05] + +=== Fixed +* Skin UI content CSS was truncated when bundling, causing CSS styles to be missing. +// #TINY-11875 +* Context forms used to disappear if their input were disabled on `onSetup`. +// #TINY-11890 + == xref:7.7.0-release-notes.adoc[7.7.0 - 2025-02-20] === Added From 7fc4f89824b3643b7bcb8345b0840877afcc7e34 Mon Sep 17 00:00:00 2001 From: "CODE:AG" <57781325+abhinavgandham@users.noreply.github.com> Date: Tue, 4 Mar 2025 16:39:34 +1000 Subject: [PATCH 5/9] DOC-3150: Context forms used to disappear if their input were disabled in the `onSetup` API (#3644) --- modules/ROOT/pages/7.7.1-release-notes.adoc | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index 5f1981d588..27002ec8af 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -65,6 +65,14 @@ Previously in {productname}, an issue was identified where skin content CSS was This issue has been resolved in {productname} {release-version}. The bundling process now correctly incorporates CSS styles into the generated JavaScript resources, preventing truncation and ensuring consistent styling across the editor UI. +=== Context forms used to disappear if their input was disabled in the `onSetup` API. +// #TINY-11890 + +Previously, an issue was identified where disabling a context form's input in the `onSetup` function caused the form to disappear due to focus being set on a non-focusable element. + +In {productname} {release-version}, this issue has been resolved by ensuring that the fallback focus is directed to a focusable element. As a result, even when the input is disabled, the focus remains intact, preventing the context form from disappearing. + +For more information on the `onSetup` function and context forms, see xref:contextform.adoc[Context Forms] [[known-issues]] == Known issues From fdb9f92ba3e23a06880a3a77576a4754692b6eb4 Mon Sep 17 00:00:00 2001 From: Karl Kemister-Sheppard Date: Tue, 4 Mar 2025 20:07:51 +1000 Subject: [PATCH 6/9] DOC-3150: Update release notes for 7.7.1 to include security fixes and accompanying changes. --- modules/ROOT/pages/7.7.1-release-notes.adoc | 68 ++++++++++++++++--- modules/ROOT/pages/support.adoc | 5 -- .../misc/supported-application-servers.adoc | 2 +- 3 files changed, 60 insertions(+), 15 deletions(-) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index 27002ec8af..33dd6c3ed6 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -2,7 +2,7 @@ :release-version: 7.7.1 :navtitle: {productname} {release-version} :description: Release notes for {productname} {release-version} -:keywords: releasenotes, new, changes, bugfixes +:keywords: releasenotes, bugfixes, security :page-toclevels: 1 include::partial$misc/admon-releasenotes-for-stable.adoc[] @@ -11,14 +11,57 @@ include::partial$misc/admon-releasenotes-for-stable.adoc[] [[overview]] == Overview -{productname} {release-version} was released for {enterpriseversion} and {cloudname} on ,
^^, . These release notes provide an overview of the changes for {productname} {release-version}, including: +{productname} {release-version} was released for {enterpriseversion} and {cloudname} on Wednesday, March 05^st^, 2025. These release notes provide an overview of the changes for {productname} {release-version}, including: -// Remove sections and section boilerplates as necessary. -// Pluralise as necessary or remove the placeholder plural marker. +* xref:accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes] * xref:accompanying-premium-plugin-changes[Accompanying Premium plugin changes] * xref:accompanying-enhanced-skins-and-icon-packs-changes[Accompanying Enhanced Skins & Icon Packs changes] * xref:bug-fixes[Bug fixes] * xref:known-issues[Known issues] +* xref:security-fixes[Security fixes] + +[[accompanying-premium-self-hosted-server-side-component-changes]] +== Accompanying Premium self-hosted server-side component changes + +The {productname} {release-version} release includes accompanying changes affecting the {productname} **self-hosted** services for the following plugins: + +* **Enhanced Media Embed** plugin `mediaembed`. +* **Image Editing** plugin `editimage`. +* **Link Checker** plugin `linkchecker`. +* **Spell Checker** plugin `tinymcespellchecker`. +* **Spelling Autocorrect** plugin `autocorrect`. + +For information on: + +* The **Enhanced Media Embed** plugin, see: xref:introduction-to-mediaembed.adoc[Enhanced Media Embed plugin]. +* The **Image Editing** plugin, see: xref:editimage.adoc[Image Editing plugin]. +* The **Link Checker** plugin, see: xref:linkchecker.adoc[Link Checker plugin]. +* The **Spell Checker** plugin, see: xref:introduction-to-tiny-spellchecker.adoc[Spell Checkerplugin]. +* The **Spelling Autocorrect** plugin, see: xref:autocorrect.adoc[Spelling Autocorrect plugin]. +* Deploying the **server-side** components, see: xref:introduction-to-premium-selfhosted-services.adoc[Server-side component installation]. + +The Java server-side components have been updated to the following versions: + +* `ephox-hyperlinking.war`: 2.109.5 +* `ephox-image-proxy.war`: 2.111.6 +* `ephox-spelling.war`: 2.128.4 + +=== Updating the self-hosted server-side components + +The new versions of the server-side services provide updates for the Java-based server-side components. To deploy the updated version of the server-side components: + +. Update your Java Application Server to the minimum required version: + +include::partial$misc/supported-application-servers.adoc[] + +. Replace the existing server-side `.war` files with the `.war` files bundled with {productname} {release-version} or later. + +For information on: + +* Deploying the server-side components, see: xref:introduction-to-premium-selfhosted-services.adoc[Server-side component installation]. +* Deploying the server-side components using Docker, see: xref:bundle-intro-setup.adoc[Containerized service deployments]. + +include::partial$misc/admon-no-functionality-changes-in-updated-server-side-components.adoc[] [[accompanying-premium-plugin-changes]] @@ -74,11 +117,18 @@ In {productname} {release-version}, this issue has been resolved by ensuring tha For more information on the `onSetup` function and context forms, see xref:contextform.adoc[Context Forms] -[[known-issues]] -== Known issues +[[security-fixes]] +== Security fixes + +{productname} {release-version} includes one fix for the following security issue: + +The following server-side component has been updated to include dependency updates addressing the following security issues. + +* https://nvd.nist.gov/vuln/detail/CVE-2025-25193[CVE-2025-25193] +* https://nvd.nist.gov/vuln/detail/CVE-2025-24970[CVE-2025-24970] -This section describes issues that users of {productname} {release-version} may encounter and possible workarounds for these issues. +This update is considered as a **Medium** & *High* severity vulnerability fix. -There one known issue in {productname} {release-version}. +For information on the server-side components updates, see: xref:#accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes]. -=== \ No newline at end of file +include::partial$misc/admon-no-functionality-changes-in-updated-server-side-components.adoc[] \ No newline at end of file diff --git a/modules/ROOT/pages/support.adoc b/modules/ROOT/pages/support.adoc index 0ec20fc5ff..e6c5e79206 100644 --- a/modules/ROOT/pages/support.adoc +++ b/modules/ROOT/pages/support.adoc @@ -42,11 +42,6 @@ Java Development Kit:: Java (J2EE) Application Servers:: include::partial$misc/supported-application-servers.adoc[] -Operating Systems:: -* Windows Server 2008 SP2 -* Red Hat Enterprise Linux v6 -* Red Hat Enterprise Linux v5 - Minimum Hardware Requirements:: * CPU: Dual Core Processor ~ 2Ghz. For higher loads, a quad core or higher is recommended. * RAM: 4 Gigabytes of RAM available for services diff --git a/modules/ROOT/partials/misc/supported-application-servers.adoc b/modules/ROOT/partials/misc/supported-application-servers.adoc index fcf0055f32..1e8aa7c9cc 100644 --- a/modules/ROOT/partials/misc/supported-application-servers.adoc +++ b/modules/ROOT/partials/misc/supported-application-servers.adoc @@ -1,5 +1,5 @@ * Eclipse Jetty: -** 9.4+ +** 9.4+ (with extended support) * WebSphere Application Server (WAS) 8 or later * Apache Tomcat: + From e48094d5e4d6787d982622cfd6469b9adc465314 Mon Sep 17 00:00:00 2001 From: Karl Kemister-Sheppard Date: Tue, 4 Mar 2025 20:10:04 +1000 Subject: [PATCH 7/9] DOC-3150: update nav.adoc file to include server-side changes. --- modules/ROOT/nav.adoc | 2 ++ 1 file changed, 2 insertions(+) diff --git a/modules/ROOT/nav.adoc b/modules/ROOT/nav.adoc index 2f86883b8d..4da64dd1e3 100644 --- a/modules/ROOT/nav.adoc +++ b/modules/ROOT/nav.adoc @@ -421,9 +421,11 @@ ** xref:release-notes.adoc[Release notes for {productname}] *** {productname} 7.7.1 **** xref:7.7.1-release-notes.adoc#overview[Overview] +**** xref:7.7.1-release-notes.adoc#accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes] **** xref:7.7.1-release-notes.adoc#accompanying-premium-plugin-changes[Accompanying Premium plugin changes] **** xref:7.7.1-release-notes.adoc#bug-fixes[Bug fixes] **** xref:7.7.1-release-notes.adoc#known-issues[Known issues] +**** xref:7.7.1-release-notes.adoc#security-fixes[Security fixes] *** {productname} 7.7.0 **** xref:7.7.0-release-notes.adoc#overview[Overview] **** xref:7.7.0-release-notes.adoc#accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes] From 8d7025068ba6598ea01e3ab937c35482de63ef06 Mon Sep 17 00:00:00 2001 From: Karl Kemister-Sheppard Date: Tue, 4 Mar 2025 20:13:03 +1000 Subject: [PATCH 8/9] Update modules/ROOT/pages/7.7.1-release-notes.adoc --- modules/ROOT/pages/7.7.1-release-notes.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index 33dd6c3ed6..15c266473c 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -120,7 +120,7 @@ For more information on the `onSetup` function and context forms, see xref:conte [[security-fixes]] == Security fixes -{productname} {release-version} includes one fix for the following security issue: +{productname} {release-version} includes two fixes for the following security issue: The following server-side component has been updated to include dependency updates addressing the following security issues. From 86562734194e8fd24e7e54d403b4595308dde45e Mon Sep 17 00:00:00 2001 From: abhinavgandham Date: Wed, 5 Mar 2025 09:39:12 +1000 Subject: [PATCH 9/9] Removed headings that are not needed. --- modules/ROOT/nav.adoc | 2 -- modules/ROOT/pages/7.7.1-release-notes.adoc | 38 +-------------------- 2 files changed, 1 insertion(+), 39 deletions(-) diff --git a/modules/ROOT/nav.adoc b/modules/ROOT/nav.adoc index 4da64dd1e3..3db399fdbc 100644 --- a/modules/ROOT/nav.adoc +++ b/modules/ROOT/nav.adoc @@ -422,9 +422,7 @@ *** {productname} 7.7.1 **** xref:7.7.1-release-notes.adoc#overview[Overview] **** xref:7.7.1-release-notes.adoc#accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes] -**** xref:7.7.1-release-notes.adoc#accompanying-premium-plugin-changes[Accompanying Premium plugin changes] **** xref:7.7.1-release-notes.adoc#bug-fixes[Bug fixes] -**** xref:7.7.1-release-notes.adoc#known-issues[Known issues] **** xref:7.7.1-release-notes.adoc#security-fixes[Security fixes] *** {productname} 7.7.0 **** xref:7.7.0-release-notes.adoc#overview[Overview] diff --git a/modules/ROOT/pages/7.7.1-release-notes.adoc b/modules/ROOT/pages/7.7.1-release-notes.adoc index 15c266473c..9b3f27859a 100644 --- a/modules/ROOT/pages/7.7.1-release-notes.adoc +++ b/modules/ROOT/pages/7.7.1-release-notes.adoc @@ -14,10 +14,7 @@ include::partial$misc/admon-releasenotes-for-stable.adoc[] {productname} {release-version} was released for {enterpriseversion} and {cloudname} on Wednesday, March 05^st^, 2025. These release notes provide an overview of the changes for {productname} {release-version}, including: * xref:accompanying-premium-self-hosted-server-side-component-changes[Accompanying Premium self-hosted server-side component changes] -* xref:accompanying-premium-plugin-changes[Accompanying Premium plugin changes] -* xref:accompanying-enhanced-skins-and-icon-packs-changes[Accompanying Enhanced Skins & Icon Packs changes] * xref:bug-fixes[Bug fixes] -* xref:known-issues[Known issues] * xref:security-fixes[Security fixes] [[accompanying-premium-self-hosted-server-side-component-changes]] @@ -63,39 +60,6 @@ For information on: include::partial$misc/admon-no-functionality-changes-in-updated-server-side-components.adoc[] - -[[accompanying-premium-plugin-changes]] -== Accompanying Premium plugin changes - -The following premium plugin updates were released alongside {productname} {release-version}. - -=== - -The {productname} {release-version} release includes an accompanying release of the **** premium plugin. - -**** includes the following . - -==== - -// CCFR here. - -For information on the **** plugin, see: xref:.adoc[]. - - -[[accompanying-enhanced-skins-and-icon-packs-changes]] -== Accompanying Enhanced Skins & Icon Packs changes - -The {productname} {release-version} release includes an accompanying release of the **Enhanced Skins & Icon Packs**. - -=== Enhanced Skins & Icon Packs - -The **Enhanced Skins & Icon Packs** release includes the following updates: - -The **Enhanced Skins & Icon Packs** were rebuilt to pull in the changes also incorporated into the default {productname} {release-version} skin, Oxide. - -For information on using Enhanced Skins & Icon Packs, see: xref:enhanced-skins-and-icon-packs.adoc[Enhanced Skins & Icon Packs]. - - [[bug-fixes]] == Bug fixes @@ -115,7 +79,7 @@ Previously, an issue was identified where disabling a context form's input in th In {productname} {release-version}, this issue has been resolved by ensuring that the fallback focus is directed to a focusable element. As a result, even when the input is disabled, the focus remains intact, preventing the context form from disappearing. -For more information on the `onSetup` function and context forms, see xref:contextform.adoc[Context Forms] +For more information on the `onSetup` function and context forms, see: xref:contextform.adoc[Context Forms] [[security-fixes]] == Security fixes