This is caused by unescaped <> brackets in QRCodeUiLabels.xml in framework/common.
Fixed escape syntax for <>.

Thanks: Chenghu Shan

To manage the multi form on the theming engine we added a new generic form CommonDynamicMulti to help the theme to implement how rendering all them.

Example :
        <form name="MyMultiForm" target=".." use-row-submit="true"
                 extends="CommonDynamicMulti" extends-resource="component://common/widget/CommonForms.xml">
         ...

With this implementation, OFBiz can generate automatically the dynamic sort , dynamic pagination and manage the presence of callback.

Fix typo in ContentConvertDocumentsTreeSuccessful label.

This conversion convert three services :
 * deleteRequirementAndRelated
 * autoAssignRequirementToSupplier
 * createTransferFromRequirement

Upgrades references from JDK 11 to JDK 17. It's no longer blocking the demos

ProductionRunDeclaration screen is still using  <include-form> to the
ListProductionRunOrderItems grid.

Thanks: Chatree Srichart

The form field attribute tooltip-style didn't propage between the xml definition to macro rendering.

The problem came from the RenderableFtlFormElementBuilder witch resolved the tooltip style value from the attribute "title-style" and not the "tooltip-style"

See https://freemarker.apache.org/docs/versions_2_3_32.html for details

Thanks: Daniel Dekany for all the good work

Downgrades references from JDK 17 to JDK 11. That's something I forgot to test,
it's blocking the demo

Removes useless reference to //    jrubyVersion = '9.2.19.0'

Upgrade references from JDK 11 to JDK 17

This is only the GH actions file

This is the necessary upgraded Gradle 7.6 files:
gradle-wrapper.jar
gradle-wrapper.properties

This is only the Windows init-gradle-wrapper.ps1 file

>hen clicking “PDF” button in the invoice view, it failed with a StackOverflow

A quick fix in DocTypeTemplate.groovy:
in def getCustomScreenTemplate()
Change:
parentTypeValue = from(entityTypeName).where().cache().queryFirst().parentTypeId
To:
String parentTypeValue =
from(entityTypeName)
.where("invoiceTypeId", fieldTypeValue)
.cache()
.queryFirst()
.parentTypeId

jleroux: I noticed this Ingo's not applied patch at OFBIZ-10215:
https://issues.apache.org/jira/secure/attachment/13045313/DocTypeTemplate-1.patch
It's very similar to Yannong's but a bit more general. We don't need to worry
about the 3 types (invoice, order, quote). It's already handled.

I also formatted getCustomScreenTemplate()

Thanks: Yannong Huang for report a proposition fic

Responses from permission services are checked for errors. Errors are
returned to the caller.

Typo in the action being checked when creating a product facility
prevented users with the FACILITY_CREATE permission, but not the
CATALOG_CREATE permission, from creating Product Facilities.

To be able to run and test (integration) OFBiz under JDK 17 and Gradle 7.6 we
need these workarounds in build.gradle

Bumps [dompurify](https://github.com/cure53/DOMPurify) from 2.4.2 to 2.4.3.
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](https://github.com/cure53/DOMPurify/compare/2.4.2...2.4.3

)

---
updated-dependencies:
- dependency-name: dompurify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

See https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.69

This was broken by OFBIZ-11345 where a change in InvoiceScreens.xml from form
to grid for ListTimeEntries was forgotten

Thanks: yannong huang for detailed report

Bumps [dompurify](https://github.com/cure53/DOMPurify) from 2.4.1 to 2.4.2.
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](https://github.com/cure53/DOMPurify/compare/2.4.1...2.4.2

)

---
updated-dependencies:
- dependency-name: dompurify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Fix migration service implementation using the new field name (Deny), New type must be created first to avoid FK error.
Old Type should be deleted after old list to avoid FK issue.

Florian Motteau authored Dec 27, 2022 and Nicolas Malin committed Dec 29, 2022

Make expand/collapse links visible again

Thanks to Daniel Watford and Priya Sharma to look on it

Fixed: Cannot expand tree of accounts in Navigate Accounts screen with Helveticus theme (OFBIZ-12725)

Viewing accounting/control/GlAccountNavigate?trail=null, it is not possible to
expand the chart-of-accounts tree when the Helveticus visual theme is used.

The Helveticus theme is the default theme for new deployments.

A workaround is to switch to a non-Helveticus theme.

Thanks: Daniel Watford for report

Adds an ASL2 header and fixes the package name

Due to a typo the updateProductAverageCostOnReceiveInventory function can't expire an old ProductAverageCost record of a product on new inventory receipt.

Modified: CostServices.groovy
fixed typo in function updateProductAverageCostOnReceiveInventory

Thanks: Pierre Smits

Fixed gitInfoFooter task, it fails to generate footer info, I am getting Git is not used error on terminal on Mac

Fixed delete plugin documentation task, instead of contains used proper condition to find the plugin with id

(OFBIZ-12679)

Add jobSandbox related runtimeDataId and recurrenceInfoId fields when
searching for jobs to purge so that the PurgeJob can retrieve and clean
job related entities (JobUtil.removeJob)
Also add a test that validate the complete purge

Thanks: Gaëtan Chaboussie for report and corrective patch

(OFBIZ-12727)

Bumps [jquery](https://github.com/jquery/jquery) from 3.6.2 to 3.6.3.
- [Release notes](https://github.com/jquery/jquery/releases)
- [Commits](https://github.com/jquery/jquery/compare/3.6.2...3.6.3

)

---
updated-dependencies:
- dependency-name: jquery
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Ensures the length of the secret is at least 512 bit long
https://www.rfc-editor.org/rfc/rfc7518#page-7
https://javadoc.io/doc/com.auth0/java-jwt/latest/com/auth0/jwt/algorithms/Algorithm.html#HMAC512
We should follow the rule and give a 512 bit key by default and provide
validation based on the same rule.

jleroux:
based on recommendation by Les Hazlewood (JJWT founder, Apache Shiro founder):
https://github.com/jhipster/generator-jhipster/issues/8165#issuecomment-416246549
I used a 512 bits key I created using https://www.allkeysgenerator.com
(Encryption key mode).
But I got this error:
EntitySaxReader               |E| Fatal Error reading XML on line 23, column 155
org.xml.sax.SAXParseException: The reference to entity "F" must end with the ';'
delimiter. It was due to SSOJWTDemoData content. So I removed security.token.key
from this file and used only the property in security.properties.

Thanks: Ayan Farooqui for report and suggestion

Bumps [jquery](https://github.com/jquery/jquery) from 3.6.1 to 3.6.2.
- [Release notes](https://github.com/jquery/jquery/releases)
- [Commits](https://github.com/jquery/jquery/compare/3.6.1...3.6.2

)

---
updated-dependencies:
- dependency-name: jquery
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Thanks: Sebastian Berg for implementation

Fields were used to migrate QOH and ATP inventory values to
InventoryItemDetails entities following data model changes prior to June
2006 are are no longer needed. Similarly, services which performed the
migration have also been removed.

Adds an ASL2 header
Byproduct from Eclipse: organises import