Version History

Improved HTTPS security: IntraWeb SSL (HTTPS) applications now get a grade A on ssllabs.com tests, out of the box, including Forward Secrecy support. Latest version of OpenSSL binary files is required (at least version 1.0.1j). Older OpenSSL versions are supported as well, but SSLLabs test results may be compromised.

New property ServerController.SSLOptions.SSLVersions (only affects HTTPS): This property allows you to use more than one SSL version on your IW application. When this property is set (not empty) it will be used and the property ServerController.SSLOptions.SSLVersion (without “s”) will be ignored. This property is deprecated but kept for compatibility reasons. The recommended setting for best browser compatibility/security is:

ServerController.SSLOptions.SSLVersions = [TLSv1,TLSv11,TLSv12]

New property ServerController.SSLOptions.DHParamsFile (only affects HTTPS): Allows you to set the Diffie-Hellman parameters when using OpenSSL. Read more about it here.

New property ServerController.MobileOptions: allows you to set a custom ViewportTag. This tag is used when rendering for mobile devices.

New unit IW.Parser.UTF8.pas (contains TIWUTF8ContentParser). This content parser replaces standard TUTF8ContentParser. The TUTF8ContentParser class has a critical bug in Delphi XE7 (not fixed in Update 1), and breaks all ISAPI applications. This new class fixes it. It also isolate us from future changes in built-in UTF8ContentParser.

New default cipher list (only affects HTTPS): We now use a default cipher list (when ServerController.SSLOptions.CipherList is left blank) tested as the best option to handle TLS, Forward Secrecy, DHParams, etc.

New content parser can now parse custom (RAW) content sent to an IntraWeb application using POST requests.

New property ButtonVisible on TIWFileUploader. When button is invisible you may call a JavaScript function “selectFile()” to show the file selection dialog box in browser.

Bug fix: On Internet Explorer IWLink could give a 404 error after Async Click.

Bug fix: Property NonEditableAsLabel was not working as expected.

Bug fix: TIWCustomEdit and descendant classes: ReadOnly controls should not be rendered disabled.

Bug fix: TIWLabel with AutoSize = True didn’t work as expected in some cases.

Bug fix: Under some special circumstances the session count could be negative.

Bug fix: When ServerController.SSLOptions.NonSSLRequest = nsBlock, the HTTPS server could be inactive.

Bug fix in IntraWeb Project Wizard: Bug fix: Disabled OK button when project name changed.

Bug fix: Under certain circumstances, increasing the zoom in browser could make the scroll bars visible.

Bug fix: Under certain circumstances, a DB aware control, rendered as disabled and made enabled during async calls would not submit its value, even though the property SubmitOnAsyncEvent = True.

Workaround for TWebResponse.AddCustomHeaders() bug (standard RTL/VCL unit): Multiple headers fields with the same name is buggy in TWebResponse implementation. This bug breaks ISAPI application when setting multiple cookies.

Modified: Removed inline styles from IWRegion, TIWCustomComboBox, TIWCustomListBox, TIWLabel and descendant classes..

Modified: Improved handling of style attributes when processing an Async (AJAX) response.

Modified: UseSize property is not displayed in Object Inspector for TIWCustomImage, TIWCustomListBox and TIWCustomComboBox (and descendant) classes. This property should be controlled via StyleRenderOptions.RenderSize property.

Modified: When changing style attributes of some control during an Async request, whenever possible, the internal style (the

Improved TIWHRule control.

Many performance optimizations on server side.

Many improvements and optimizations on IW JavaScript libraries.

14.0.35

14.0.35