Blog

We are pleased to announce the first Release Candidate of CommandBox 5.0.0-RC.1 is now available.  This release started as 4.9.0-alpha, but we decided to go ahead with a major version bump due to some major updates in our Java libraries.  Most notably, Lucee 5.3 and Java 11 support.  Please help us test this RC.  If no issues are found, we'll turn it into a final release.  

Today we bring you a minor release for cbSecurity packed with features! Version 2.2 brings a complete overhaul of our jwt library and we have now switched over to the jwtcfml (https://forgebox.io/view/jwt-cfml) library which has given us a huge boost in capabilities especially supporting RS and ES algorithms. Check out their ForgeBox entry page to see all the features we inherit by using it.

We have also focused on improving our JWT and API security on this release, so check out the release notes for all the goodness!

# Install
install cbsecurity

# Update
update cbsecurity

We are so excited to bring you a major release for cbValidation! cbValidation has been around for quite some time and it was about time to give a major boost in development. We have also completely rewritten the documentation to make it more attractive and user-friendly (https://coldbox-validation.ortusbooks.com/). Enjoy!

# Install
install cbvalidation

# Update
update cbvalidation

We are so excited to bring a major version release of our Mementifier Module. For those of you who do not know what Mementifier is, here is a small synopsis.

What is Mementifier?

This module will transform your business objects into native ColdFusion (CFML) data structures with :rocket speed. It will inject itself into ORM objects and/or business objects alike and give them a nice getMemento() function to transform their properties and relationships (state) into a consumable structure or array of structures. It can even detect ORM entities and you don't even have to write the default includes manually, it will auto-detect all properties. No more building transformations by hand! No more inconsistencies! No more repeating yourself! Best of all, it is lightning fast!

Today we are pleased to announce a minor release for our FORGEBOX suite of products to version 4.8.0. This release includes lots of fixes and some great additions for your development needs for all Editions: Community and Enterprise.

We are very excited to bring you another release for our Redis Lucee Extension. This is a minor release and it sports quite a few updates, improvements and Lucee compatiblity updates.

Today we are pleased to announce a minor release for our FORGEBOX suite of products to version 4.8.0. This release includes lots of fixes and some great additions for your development needs for all Editions: Community and Enterprise.

We are very excited to bring you a new commercial product release for the Ortus Family: MongoDB Server Lucee Extension  The MongoDB Server Lucee Extension allows you to natively connect to a MongoDB Server cluster and leverage it for distributed caching, session/client storage and distribution, cluster RAM file systems, and much more. It can allow your Lucee servers to scale and extend easily by leveraging MongoDB Server as the platform of choice for session/cluster managements, NoSQL, caching and virtual file-systems.

We are very excited to bring you another release for our Redis Lucee Extension. This is a minor release and it sports quite a few updates thanks to customer feedback, especially on clients working with hosted Redis solutions that would required SSL and password authentication. We have expanded the connections to have more configuration parameters, especially if you are dealing with high traffic applications.

Overview

The Redis Lucee Extension allows you to natively connect to a Redis Server cluster and leverage it for distributed caching, session/client storage and distribution, cluster RAM file systems, and much more. It can allow your Lucee servers to scale and extend easily by leveraging Redis Server as the platform of choice for session/cluster managements, caching and virtual file-systems.

If you have ever asked yourself these questions, then our Lucee Extension can help you:

• Want to use round-robin balancing instead of sticky sessions?
• How do you deal with session/client information when you have more than 1 server in your cluster?
• How can I scale my Lucee servers when I am running out of RAM?
• Do you want your users to still be logged in even if a server in my cluster dies or is restarted?
• Do you want to have a cluster-wide file system?
• Are you using a container based deployment and need off heap peristence?
• Do you want to be able to cache data in a distributed and elastic fashion?

We are so excited to release The ColdBox Security Module version 2.0.0. It has been quite a few years since we did a major version of our security module, but it is worth the wait. It is just easier to say we completely rewrote it in modern CFML and introduced modern Security practices, HMVC security to modules, annotation driven security and JWT token services. Never again write API security, we got you covered! We also completelty rewrote the documentation and now we have yet another awesome security book: https://coldbox-security.ortusbooks.com/

install cbsecurity
update cbsecurity

There are just too many things to talk about in this release, so we will just list out the major features and you can visit our docs for the complete rundown of ColdBox Security 2.0.0.

Introduction

The ColdBox cbsecurity module will enhance your ColdBox applications by providing out of the box security in the form of:

• A security rule engine for incoming requests
• Annotation driven security for handlers and actions
• JWT (Json Web Tokens) generator, decoder and authentication services

Features

• Ability to have global security rules
• Ability for modules to add their own security rules and action overrides
• Ability to distinguish between authentication and authorization issues
• Annotation driven cascading security for handlers and actions
• Security rules can exist in:
  • XML File
  • JSON File
  • Database
  • Models
• The rules can be configured to use regular expressions or simple snippets
• Can use ColdFusion authentication security
• Can leverage any custom authentication provider
• Plug any Authentication service or can leverage cbauth by default
• Capability to distinguish between invalid authentication and invalid authorization and determine an outcome of the process.
• Ability to load/unload security rules from contributing modules.
• Ability for each module to define it's own validator