Sprint 11 Review: Push on all fronts

Lukas Lieb

To the cloud and back @Alexander Suter
DAO Entity Class @Reguël Wermelinger
HTTP Security Headers @Lukas Lieb
Process Editor: Undo/Redo improvements @Lukas Lieb
Process Inscription improvements @Elio Di Puma
CMS Editor @Lukas Giger
Noteworthy

Alexander Suter

To the cloud and back

The Axon Ivy Engine now starts even if the configuration or configuration/opensearch directories are missing. This can occur with certain volume mount setups that cause these folders to be lost.
The Axon Ivy Cluster now invalidates the CMS cache across all cluster nodes whenever changes are made to the application CMS.
Cluster communication is now visualized in the traffic graph.
The Docker samples and cluster documentation have been updated.
The Cluster View in the Engine Cockpit now displays all sessions from all cluster nodes.
A DNS-based node discovery example has been added to the documentation. While UDP-based discovery remains the preferred method, DNS can be used as an alternative if you encounter difficulties setting up UDP.
Our kubernetes examples shows now complex setups.

Audience

Axon Ivy Engine Operators

Value

Smoother experience when operating Axon Ivy Engine in Cluster and in general for docker based installations.

Version

13.2.0
12.0.x

Discussion

Feedback?

Next steps
Two stories are left:

Support identity providers for administrators
Heavily improve the deployment experience for ivy projects

Screenshots / Code

Reguël Wermelinger

DAO Entity Class Repositories

Using high-level repositories for database entities enables you to concentrate on domain logic instead of boilerplate code

Audience
Process Developers

Value

🤖 more common infrastructure generated for free: CRUD ops, Pagination, Queries, ...
🤝 guidance for teams, where to maintain JPA utility code
✍️ database-demos are covering first JPA entity use cases
🍟 based on Hibernate 7.0 / Jakarta.Data 1.0

Version

13.2.0 ( maven-only: no pro-designer codegen yet! ⚠)

Discussion
We'd love to simplify our APIs around persistent entities, avoiding the enforced passing of persistence-unit name parameters.

are multiple persistence-units per application/project used anywhere?

Next steps

document Repo capabilities
static meta-model generation
form Table component uses new Repository infra

Screenshots / Code
https://github.com/axonivy/demo-projects/blob/master/database/db-demos-test/src_test/db/demo/persistence/test/PlayerRepoIvyTest.java

Lukas Lieb

HTTP Security Headers

Document and support the definition of HTTP headers in the ivy.yaml.

Audience

Sysadmins

Value

📄 Updated documentation
🛠️ Configure HTTP headers via ivy.yaml WebServer.HttpHeaders
- Referrer-Policy now set by default to strict-origin-when-cross-origin
🛠️ Configure PrimeFaces Content-Security-Policy via ivy.yaml WebServer.PrimeFaces
- It is defined by default for the Engine-Cockpit and the Dev-Workflow-UI as they live in their own context
👀 Show response headers in the Engine-Cockpit Web Server page
🗑️ The HttpHeaderSecurityFilter via the web.xml is no longer configured by default and deprecated.
- The X-Frame-Options and the X-Content-Type-Options header are now defined via the ivy.yaml
- The Strict-Transport-Security header can be defined via ivy.yaml but should be defined in your reverse proxy
- Migration Notes

Version

13.2
12.0.8 (only documentation and ivy.yaml support)

Discussion
Questions?

Next steps

Screenshots / Code

WebServer:
  # HTTP Headers that are added to a server response.
  # [restart required]
  HttpHeaders:
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cross-Origin-Embedder-Policy
    # [restart required]
    # [examples: unsafe-none, require-corp, credentialless]
    Cross-Origin-Embedder-Policy: ""
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cross-Origin-Opener-Policy
    # [restart required]
    # [examples: unsafe-none, same-origin-allow-popups, same-origin, noopener-allow-popups]
    Cross-Origin-Opener-Policy: ""
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Cross-Origin-Resource-Policy
    # [restart required]
    # [examples: same-site, same-origin, cross-origin]
    Cross-Origin-Resource-Policy: ""
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Referrer-Policy
    # [restart required]
    # [examples: no-referrer, no-referrer-when-downgrade, origin, origin-when-cross-origin, same-origin, strict-origin, strict-origin-when-cross-origin, unsafe-url]
    Referrer-Policy: strict-origin-when-cross-origin
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Strict-Transport-Security
    # [restart required]
    # [examples: max-age=63072000]
    Strict-Transport-Security: ""
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Content-Type-Options
    # [restart required]
    # [examples: nosniff]
    X-Content-Type-Options: nosniff
    # https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Frame-Options
    # [restart required]
    # [examples: DENY, SAMEORIGIN]
    X-Frame-Options: SAMEORIGIN
  PrimeFaces:
    # https://primefaces.github.io/primefaces/13_0_0/#/core/contentsecuritypolicy?id=content-security-policy
    # [restart required]
    ContentSecurityPolicy:
      # [examples: false, true, reportOnly]
      Enabled: false
      # [examples: object-src 'none'; base-uri 'none'; frame-ancestors 'self'; worker-src 'self' blob:; script-src 'strict-dynamic']
      Policy: ""
      ReportOnlyPolicy: ""

Lukas Lieb

Process Editor: Redo/Undo improvements

Enhance the developer experience when undoing or redoing changes in the Process Editor.

Audience

Process Developers

Value

↩️ Undo / Redo buttons are only enabled if there are changes made
👀 Process element config changes are visualized which an action to quickly open the inscription of the corresponding element
- Currently, this is solved via a toast message. IMO this keeps the "noise" as low as possible (no blinking, no inscription open/closing, no movement of the editor to the corresponding element) per default but possibly via action.

Version

13.2
12?

Discussion
Please try out and give feedback

Next steps
Maybe some more DX improvements for the Process Editor

Screenshots / Code

Elio Di Puma

Process Inscription improvments

Last time, we upgraded the Inscription by replacing accordions with tabs. Now we’re refining that experience further by making smarter use of the newly gained vertical space inside those tabs.

Audience

Process Developers

Value
📂 Smart defaults: the most relevant collapsibles now open automatically
📐 Improved layout: text and code areas (like Mail Content, SQL Query and Code) now use more vertical space by default.

Version

13.2

Discussion

Feedback, Questions, further improvement Ideas?

Screenshots / Code

Lukas Giger

CMS Editor

The CMS Editor fully supports manipulating Content Objects of type "File".
When adding a Content Object, its type can be changed to "File". The values of this Content Object represent files that can be added, changed, deleted, and viewed for any given language.

Audience

Low-coders
Process developers

Value

Use files as Content Object values to store and load large texts or binary data from the Content Management System.
Add, change, delete, and view these files with a pleasant user interface.

Version

13.2.0

Discussion

Feedback

Next steps

Improve the design and user experience.
Provide machine-translated suggestions.

Screenshots / Code

{CMS Editor Files}

Lukas Lieb

Noteworthy

Web-IDE

XIVY-16533: Hold websocket clients per session @Louis Müller
XIVY-16896: Cleanup and improve java ivy-api @Louis Müller

Runtime Log View

XIVY-16870: Auto-Refresh RuntimeLog view; show new log entries when they appear @Tobias Gretler

General

XIVY-16407: Analyze the ElasticSearch upgrade because the EOL of ES 7.17 @Alexander Suter
XIVY-17074: Prevent migrating the default property source for ivy.yaml and app.yaml @Alexander Suter
XIVY-17068: Update GLSP to v2.4.0 @Lukas Lieb
XIVY-16221: Provide an unlimited PrimeFaces LTS license @Reto Weiss
XIVY-16606: Streamline popup dialogs in the editors @Jens Hartmann

Bugs

XIVY-16537: Fix that multiple dialogs can be opened in the Editors using shortcuts @Elio Di Puma
XIVY-17097: Connectivity-Demos "6.4.0 Upload file UI" does not close the JAX_RS connections and blocks the rest pool @Lukas Lieb
XIVY-17002: EndPage element should handle embedInFrame configuration correctly @Lukas Lieb
XIVY-17095: Change process element description does not mark the process editor as dirty in the Pro Designer @Lukas Lieb
XIVY-16863: Editor shows unsaved changes after focusing on the inscription view and returning to the content part without any changes @Elio Di Puma
XIVY-16966: Button to add Tags in Inscription is cut off in German @Jens Hartmann
XIVY-15972: The REST client connection test does not work if a feature uses Ivy.* API in the Engine Cockpit @Reto Weiss
XIVY-17061: Deadlock while starting the Axon Ivy Engine during PMV start @Reto Weiss
XIVY-17065: WorkflowBean (ivyWorkflowView) throws "Persistent object has been deleted" on tasks in state CREATED that are persistent @Reto Weiss
XIVY-17003: Endpage inscription support is wrong and misleading @Jens Hartmann
XIVY-16400: On Windows, open type/resource dialogs do not work if one of our web-based editors is focused @Elio Di Puma