Brad Hards

> Perhaps a simpler approach is to just assume that in 2023, no one should be using IE 8, Firefox less than 3, Safari less than 5, or Opera less...

> Regarding the diff in AbstractSecurityNamedServicePanelTest, I had a look at the code. I don't remember working on it before, but semantically, the new bits are not doing the same...

> I'm thinking we could rebuild our own ModalWindow on top of ModalDialog, in a way that's mostly API compatible with the old deprecated class, at least for the few...

> I'd rebase the branch on top of main and propose a build for manual tests. Will do. I have some summer break time coming up soon, and should be...

> > Perhaps a simpler approach is to just assume that in 2023, no one should be using IE 8, Firefox less than 3, Safari less than 5, or Opera...

Wicket 9 has a strict (perhaps aggressive would be a better term) default policy for Content Security Policy (CSP) - see https://github.com/apache/wicket/blob/master/wicket-user-guide/src/main/asciidoc/security/security_6.adoc That is currently completely disabled by https://github.com/geoserver/geoserver/pull/7154/commits/c16c7526f8a17dc2b8b202800bab86168d031b9d I'd...

Problems to fix: - [X] Opening logs, produces: "Uncaught TypeError: textArea is null http://localhost:8080/geoserver/web/wicket/bookmarkable/org.geoserver.web.admin.LogPage?8&filter=false&filter=false:42"

> Is this good for a manual test round, involving users? I think its premature, but will need help to bash it into shape. Will follow-up on the mailing list...

> @bradh I could not find a Jira issue for this so I am making one; enough people would like to help out we need some place to organize communication....

Nasty rebase....