Release Notes / Version 11.2301
Table Of ContentsFixed CSRF Documentation Bug
The documented example of backward compatible CSRF tokens contained a bug that was fixed.
(CMS-21769)
Search Query In Download Portal Is Now Escaped
Before the change the search query could contain HTML which was added to the search result without being escaped .
(CMS-21393)
Segment Validator Warns of Unfavourable Segment Names
It is not recommended to use a segment name in pages ending with a number preceded by a minus sign. The default request mapping can get confused by interpreting the number as content ID. In some rare cases that can lead to CAE handler error and such a page is not accessible. The ChannelSegmentValidator warns about such unfavourable segment names.
(CMS-19526)
Improved CAE Local Properties for Template Development
The
local
spring profile for live and preview CAE now configures the following cookie defaults:
server.servlet.jsp.init-parameters.development=true freemarker.template.update.delay.in.seconds=1
(CMS-18984)