[jira] [Comment Edited] (OFBIZ-5409) JSON Response does not set http status on error

Sun, 12 Jan 2014 04:09:47 -0800 

    [ 
https://issues.apache.org/jira/browse/OFBIZ-5409?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13868871#comment-13868871
 ] 

Jacques Le Roux edited comment on OFBIZ-5409 at 1/12/14 12:08 PM:
------------------------------------------------------------------

Thanks Gareth, Adrian,

Gareth, a modified patch as been commited at
trunk r1557462  
R13.07 r1557463
R12.04 r1557464+1557519  
R11.04 r155745

There are no http status set on error, the modified patch is rather a defensive 
patch which secures json response on services calls. 
It might need some changes in custom code if (not recommended) an Ajax GET 
response is used... The util.js scrpt is introduced for that, though normally 
should not be needed... 




was (Author: jacques.le.roux):
Thanks Gareth, Adrian,

Gareth, a modified patch as been commited at
trunk r1557462  
R13.07 r1557463
R12.04 r1557464
R11.04 r155745

There are no http status set on error, the modified patch is rather a defensive 
patch which secures json response on services calls. 
It might need some changes in custom code if (not recommended) an Ajax GET 
response is used... The util.js scrpt is introduced for that, though normally 
should not be needed... 



> JSON Response does not set http status on error
> -----------------------------------------------
>
>                 Key: OFBIZ-5409
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-5409
>             Project: OFBiz
>          Issue Type: Bug
>          Components: ALL APPLICATIONS
>    Affects Versions: Release Branch 11.04, SVN trunk, Release Branch 12.04, 
> Release Branch 13.07
>            Reporter: Gareth Carter
>            Assignee: Jacques Le Roux
>             Fix For: Release Branch 11.04, SVN trunk, Release Branch 12.04, 
> Release Branch 13.07
>
>         Attachments: CommonEvents.patch, OFBIZ-5409 - Remove internal 
> attributes for security reason and secure json get.patch, OFBIZ-5409 - Remove 
> internal attributes for security reason.patch, OFBIZ-5409 - Remove internal 
> attributes for security reason.patch, before-after.diff
>
>
> When a json response is sent and there was an error in the service called, it 
> does not set the http status. Currently status code is always 200 but it 
> might be more appropriate to send an error code such as 500.



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

Reply via email to