Hi Scott, I created issue CAS-1251 in JIRA.
Thank you, Ken Maruyama Technical Architect Fashion Institute of Design & Merchandising 1-213-624-1201 Ex.4525 [email protected] From: Scott Battaglia <[email protected]> To: <[email protected]> Date: 01/09/2013 11:58 AM Subject: Re: [cas-user] Getting exception.message in the CAS login page with Http GET parameter "?execution". Can you create a JIRA issue for this with steps to reproduce and any relevant screenshots and we'll take a look at it. Thanks! Scott On Wed, Jan 9, 2013 at 1:29 PM, Ken Maruyama <[email protected]> wrote: Have you found a solution for this? I am having the same issue. We use a security program to scan our web applications, and the program is giving us a warning saying that this is a cross site scripting security issue with high severity. I am using 3.5.1 too. Is there a way to disable the JSON output when this error happens? I believe this will make the javascript not to show in the browser. Thank you, -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user DISCLAIMER This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Use or distribution of this email by an unintended recipient is prohibited and may be a violation of law. If you have received this email in error, please notify the sender immediately and then destroy the document. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of FIDM. Finally, the recipient should check this email and any attachments for the presence of viruses. FIDM accepts no liability for any damage caused by any virus transmitted by this email. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
