Update Spring Boot to 1.3.5.RELEASE

[php-coder]

• Update pom.xml
  • Use new version (also update the comments)
• Read the change logs
  • Spring Boot
    • https://spring.io/blog/2015/12/18/spring-boot-1-3-1-and-1-2-8-available-now
      • https://github.com/spring-projects/spring-boot/issues?q=milestone%3A1.3.1+is%3Aclosed
    • https://spring.io/blog/2016/01/22/spring-boot-1-3-2-released
      • https://github.com/spring-projects/spring-boot/issues?q=milestone%3A1.3.2+is%3Aclosed
    • https://spring.io/blog/2016/02/26/spring-boot-1-3-3-and-1-4-0-m1-available-now
      • https://github.com/spring-projects/spring-boot/issues?q=milestone%3A1.3.3
    • https://spring.io/blog/2016/05/06/spring-boot-1-3-4-released
      • https://github.com/spring-projects/spring-boot/issues?q=milestone%3A1.3.4+is%3Aclosed
    • https://spring.io/blog/2016/05/10/spring-boot-1-3-5-released
      • https://github.com/spring-projects/spring-boot/issues?q=milestone%3A1.3.5+is%3Aclosed
  • spring (4.2.3.RELEASE -> 4.2.6.RELEASE)
    • https://spring.io/blog/2015/12/17/spring-framework-4-2-4-4-1-9-released
      • https://jira.spring.io/jira/secure/ReleaseNote.jspa?projectId=10000&version=15353
    • https://spring.io/blog/2016/02/25/spring-framework-4-2-5-available-now
      • https://jira.spring.io/jira/secure/ReleaseNote.jspa?projectId=10000&version=15439
    • https://spring.io/blog/2016/05/06/spring-framework-4-3-rc2-4-2-6-and-3-2-17-available-now
      • https://jira.spring.io/secure/ReleaseNote.jspa?projectId=10000&version=15460
  • spring-security (4.0.3 -> 4.0.4)
    • https://spring.io/blog/2016/02/26/spring-security-4-0-4-released
      • https://github.com/spring-projects/spring-security/issues?utf8=%E2%9C%93&q=milestone%3A4.0.4
  • liquibase (3.4.1 -> 3.4.2)
    • www.liquibase.org/2015/11/liquibase-3-4-2-released.html
  • jetty (9.2.11.v20150529 -> 9.2.16.v20160414 because of java.lang.UnsupportedOperationException: Use setIncludedMimeTypes or setExcludedMimeTypes instead)
    • https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00081.html
    • https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00084.html
    • https://dev.eclipse.org/mhonarc/lists/jetty-announce/msg00088.html
    • https://github.com/eclipse/jetty.project/releases/tag/jetty-9.2.16.v20160414
• Migrate
  • Compare dependencies
  • Try to use server.server-header (Spring Boot GH 4461)
  • Try server.server-name property (Spring Boot GH 4504)
  • Configure dispatcher types (Spring Boot GH 4505)
  • Remove install: true workaround (Spring Boot GH 4922) (resolution: I don't see the benefits)
  • Try to use AuthenticationAuditListener (resolution: need more investigation and depends on Activate and integrate spring-boot-actuator #86, so we'll back to it later)
  • Check *.conf file permissions on server (Spring Boot GH 4935) (resolution: so hard permissions (0400) on config file will make our auto-releases harder and I don't see any problem that someone could read the options of JVM)