[ https://issues.apache.org/jira/browse/WW-5294?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17700804#comment-17700804 ]
Lukasz Lenart commented on WW-5294: ----------------------------------- Hmm... interesting, I will re-open this issue to investigate the case with {{s:textfield}}, thanks for pointing this out :) > s:url tag usage in a public page triggers a warning to not expose JSP pages > directly > ------------------------------------------------------------------------------------- > > Key: WW-5294 > URL: https://issues.apache.org/jira/browse/WW-5294 > Project: Struts 2 > Issue Type: Bug > Affects Versions: 6.1.2 > Environment: Ubuntu 20, Java 8, Tomcat 9 > Reporter: Erica Kane > Priority: Major > Fix For: 6.2.0 > > > I have a number of public pages that use the {{<s:a>}} tags with no issues. > But one page uses an {{<s:url>}} tag, and every time it is visited I get a > warning on our logs the Action invocation context is null, and that JSP pages > should not be exposed directly. This is an informational page only, and I > can't think why the URL tag is unsafe to use while the a tag is safe. I am > assuming this is a bug, but of course if there is an issue with the URL tag > on a public page I would like to know. -- This message was sent by Atlassian Jira (v8.20.10#820010)