finalized for release

Author: lmajano

box.json

@@ -1,6 +1,6 @@
 {
     "name":"ColdBox Security",
-    "version":"3.6.1",
+    "version":"3.7.0",
     "location":"https://downloads.ortussolutions.com/ortussolutions/coldbox-modules/cbsecurity/@build.version@/cbsecurity-@build.version@.zip",
     "author":"Ortus Solutions.com <info@ortussolutions.com>",
     "slug":"cbsecurity",

changelog.md

@@ -9,14 +9,24 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Changed
+
+- Increased VARCHAR field sizes in `DBLogger` table schema to accommodate longer URLs and user agent strings. Fields `host`, `path`, `queryString`, `referer`, and `userAgent` now use VARCHAR(1024) to prevent truncation of data.
+- Updated `DBLogger` insert statements to truncate `host`, `path`, `queryString`, `referer`, and `userAgent` values to 1024 characters using `left()` function to prevent database errors.
+
 ### Fixed
 
 - Allow for sub-modules to load AFTER cbsecurity loads.
-- Make sure the jwt toke is not null when doing discovery in the JwtService.
+- Make sure the jwt token is not null when doing discovery in the JwtService.
+- Fixed `isSafeRedirectUrl()` host comparison for non-default ports by stripping port from host before comparing with URI host.
+- ACF Compatibility: Fixed `dateTimeFormat` usage for `logDate` in activity view to prevent conversion errors in Adobe ColdFusion.
 
-### Changed
+### Added
 
-- Increased VARCHAR field sizes in `DBLogger` table schema to accommodate longer URLs and user agent strings. Fields `host`, `path`, `queryString`, `referer`, and `userAgent` now use VARCHAR(1024) to prevent truncation of data.
+- Added `TokenRejectionException` handling in JWT handler to properly handle token rejection errors.
+- Updated JWT handler error message calls to match specification.
+- Added test cases for non-default port scenarios in `isSafeRedirectUrl()` validation.
+- Added test validation for JWT response messages.
 
 ## [3.6.0] - 2025-12-08
 

models/util/DBLogger.cfc

@@ -159,12 +159,12 @@ component accessors="true" singleton threadsafe {
 				action      : { cfsqltype : "varchar", value : arguments.action },
 				blockType   : { cfsqltype : "varchar", value : arguments.blockType },
 				ip          : { cfsqltype : "varchar", value : arguments.ip },
-				host        : { cfsqltype : "varchar", value : arguments.host },
+				host        : { cfsqltype : "varchar", value : left( arguments.host, 1024 ) },
 				httpMethod  : { cfsqltype : "varchar", value : arguments.httpMethod },
-				path        : { cfsqltype : "varchar", value : arguments.path },
-				queryString : { cfsqltype : "varchar", value : arguments.queryString },
-				referer     : { cfsqltype : "varchar", value : arguments.referer },
-				userAgent   : { cfsqltype : "varchar", value : arguments.userAgent },
+				path        : { cfsqltype : "varchar", value : left( arguments.path, 1024 ) },
+				queryString : { cfsqltype : "varchar", value : left( arguments.queryString, 1024 ) },
+				referer     : { cfsqltype : "varchar", value : left( arguments.referer, 1024 ) },
+				userAgent   : { cfsqltype : "varchar", value : left( arguments.userAgent, 1024 ) },
 				userId      : { cfsqltype : "varchar", value : arguments.userId },
 				rule        : {
 					cfsqltype : "longvarchar",