> This release includes important security fixes:
> - S2-020 - ClassLoader manipulation via request parameters
What is the ultimate impact of this manipulation? Another RCE bug?
tim
-
To unsubscribe, e-mail: dev-un
Hi.
I have some errors while validating my form.
[b]struts.xml[/b]
/WEB-INF/jsp/view/addRequest.jsp
/WEB-INF/jsp/view/addRequest.jsp
/WEB-INF/jsp/view/ok.jsp
[b]AddClientRequestAction[/b]
public class AddClientRequestAction extend
Why does a difference of opinion always have to lead to someone
saying "I don't think you get what I'm saying"? Sigh. I get it just
fine, I just disagree.
So what you're saying effectively is that developers who are smart
enough/well trained enough to know to wrap expensive logging
stat
On Aug 22, 2006, at 5:11 PM, Martin Cooper wrote:
if (isDebugLoggingEnabled()) {
log.debug("And the answer is: " + expensiveMethodCallHere());
}
I don't know about you, but I'm very thankful for that guard when
debug
logging is disabled (e.g. in production). Without it, I'm going to
make
To add a little weight to Don's comments, the cost of allocating an
array really is *very* minor. To quote Brian Goetz[1], the cost of
allocating a new object in 1.4.2 and above is approximately 10
instructions (maybe more for an array, but remember that var-arg
calls are optimized at comp
I can't agree enough with using var-args for logging. Stripes has,
from the start, done something very similar to Seam. The main
difference is that instead of putting placeholders into the message,
you just provide things in the order you want appended. I find that
convenient because you
On Jul 26, 2006, at 11:00 AM, Jason Carreira wrote:
I understand that there are different ways to skin the cat, but
what if I want to reuse my actions in different contexts? What if I
want to call my action from a JBPM workflow? Do I need to subclass
it to override the result that's returne
Being able to return Result instances from Actions doesn't
necessarily mean the lack of reuse of Results. This is equivalent to
saying that because it's Java code you can't reuse it. I didn't
realize that XML was the solution to lack of reuse in OO ;)
Seriously though, it's not uncommon i
While it might imply that, Stripes actually uses
@HandlesEvent
Which can take an optional String parameter which is the name of the
handled event (which is defaulted to the method name otherwise)
I was going to chime in on this, so I may as well now. Stripes,
through it's default w
It's a gentle slide for WebWork 2.2 developers now, and some of us
would like to keep it that way.
Forever? Or just for the Struts 2.0 release? Because if you guys
are talking about making sweeping changes some time ... can you keep
doing this?
Now, if the current 2.0.0 doesn't represent
I don't often reply to messages on these lists, but I feel like I
have to offer a (relatively) outside perspective here.
There's been a lot of confusion external to apache about what's going
on with Struts. With Shale moving to a TLP, that's helped, but I
think a lot of people are still co
...we're dealing with the ramifications of dismantling Jakarta from years
ago.I actually think that this situation would have never arose if
Struts and Shale were two sibling subprojects in a larger Jakarta project.
But, the Board spoke years ago, and umbrella projects were broken up because
o
Hi All,
I remember a while back that there was quite a bit of discussion
which Java version to make the primary version supported by SAF2 and
if it's 5, then how to support 1.4. Retrotranslator was mentioned as
one of the ways to support 1.4 without having to stay source-compatible.
I'd
Just a little javascript error (at least for firefox linux): error in
shale-usecases-20060305.war . /ajax/zipCode.jsp line 36
sendRequest(<%= request.getContextPath() %> +
should read
sendRequest("<%= request.getContextPath() %>" +
The un quoted path is not rec
.org/turbine/further-reading/pullmodel.html
Don
On 10/13/05, Michael Jouravlev <[EMAIL PROTECTED]> wrote:
I came across a discussion about view helpers, started by Tim Fennel,
author of Stripes. He advocates the "inverted" model for displaying
views, when view helper action is calle
Hello.
There was a bug (105695) that was fixed in 1.2.6 of struts.
Basically, if your application is the root application, the following:
would yield the following html:
The 2 slashes were a problem. This bug, I believe has been fixed.
My problem is with the following
he
way, but not in the last six months or so.
I have no personal plans to Mavenize the Shale builds ... Ant works fine for me.
Craig
Craig, resistance is futile :-)
Tim O'Brien
-
To unsubscribe, e-mail: [EMAIL PRO
elcome", which I executed on a
"/Welcome.do"-request. This is what I would like to achieve on my custom
handler resolvement too. Can somebody point me directions, how this is
achieved?
Thank you, Tim
-
To unsubscr
we are iterating through an arraylist of objects in our jsp that we get from
session.
we then display the object's elements in text fields for a user to manipulate
and submit.
the problem is: what do you name the form fields when you have multiple
objects. each object will have the same
eleme
19 matches
Mail list logo
