In addition, the blog post says, "Finally, it should also be mentioned that and in addition to various bug fixes, GlassFish 4.1.1 also includes several security related fixes."
For this issue development should (please add or correct):
[x] Test Glassfish 4.1.1 in Vagrant.
[ ] Encourage developers to upgrade (might solve #1983).
[ ] Remove references above to Weld and Grizzly patches in the Guides.
pdurbin
commented
4 years ago
Oracle has announced that GlassFish 4.1.1 is now available!
Of particular interest for people running Dataverse is that Glassfish 4.1.1 contains:
Both of these updates are significant because they are newer than the versions recommended in our Installation Guide.
http://guides.dataverse.org/en/4.2/installation/prerequisites.html recommends Weld 2.2.10.SP1 because it has the bug fix for https://issues.jboss.org/browse/WELD-1907 which we investigated in #1516.
http://guides.dataverse.org/en/4.2/installation/shibboleth.html#apply-grizzly-1787-patch recommends downloading http://guides.dataverse.org/en/4.2/_static/installation/files/issues/2180/grizzly-patch/glassfish-grizzly-extra-all.jar which is a custom jar we created to contain the bug fix in https://java.net/jira/browse/GRIZZLY-1787 as part of #2180.
In addition, the blog post says, "Finally, it should also be mentioned that and in addition to various bug fixes, GlassFish 4.1.1 also includes several security related fixes."
For this issue development should (please add or correct):