CAMEL-9309: Make it easier to turn on|off java transport over http
Project: http://git-wip-us.apache.org/repos/asf/camel/repo Commit: http://git-wip-us.apache.org/repos/asf/camel/commit/32eacdaf Tree: http://git-wip-us.apache.org/repos/asf/camel/tree/32eacdaf Diff: http://git-wip-us.apache.org/repos/asf/camel/diff/32eacdaf Branch: refs/heads/master Commit: 32eacdaff16f8709da55e27b83fa21a16d739f63 Parents: a68434c Author: Claus Ibsen <[email protected]> Authored: Thu Nov 12 11:08:43 2015 +0100 Committer: Claus Ibsen <[email protected]> Committed: Thu Nov 12 14:52:45 2015 +0100 ---------------------------------------------------------------------- .../apache/camel/component/netty/http/NettyHttpConfiguration.java | 3 +++ .../camel/component/netty4/http/NettyHttpConfiguration.java | 3 +++ 2 files changed, 6 insertions(+) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/camel/blob/32eacdaf/components/camel-netty-http/src/main/java/org/apache/camel/component/netty/http/NettyHttpConfiguration.java ---------------------------------------------------------------------- diff --git a/components/camel-netty-http/src/main/java/org/apache/camel/component/netty/http/NettyHttpConfiguration.java b/components/camel-netty-http/src/main/java/org/apache/camel/component/netty/http/NettyHttpConfiguration.java index 187143a..044c33c 100644 --- a/components/camel-netty-http/src/main/java/org/apache/camel/component/netty/http/NettyHttpConfiguration.java +++ b/components/camel-netty-http/src/main/java/org/apache/camel/component/netty/http/NettyHttpConfiguration.java @@ -132,6 +132,9 @@ public class NettyHttpConfiguration extends NettyConfiguration { * in the response as a application/x-java-serialized-object content type. * On the producer side the exception will be deserialized and thrown as is, instead of the HttpOperationFailedException. * The caused exception is required to be serialized. + * <p/> + * This is by default turned off. If you enable this then be aware that Java will deserialize the incoming + * data from the request to Java and that can be a potential security risk. */ public void setTransferException(boolean transferException) { this.transferException = transferException; http://git-wip-us.apache.org/repos/asf/camel/blob/32eacdaf/components/camel-netty4-http/src/main/java/org/apache/camel/component/netty4/http/NettyHttpConfiguration.java ---------------------------------------------------------------------- diff --git a/components/camel-netty4-http/src/main/java/org/apache/camel/component/netty4/http/NettyHttpConfiguration.java b/components/camel-netty4-http/src/main/java/org/apache/camel/component/netty4/http/NettyHttpConfiguration.java index 54b4e75..694ba2d 100644 --- a/components/camel-netty4-http/src/main/java/org/apache/camel/component/netty4/http/NettyHttpConfiguration.java +++ b/components/camel-netty4-http/src/main/java/org/apache/camel/component/netty4/http/NettyHttpConfiguration.java @@ -131,6 +131,9 @@ public class NettyHttpConfiguration extends NettyConfiguration { * in the response as a application/x-java-serialized-object content type. * On the producer side the exception will be deserialized and thrown as is, instead of the HttpOperationFailedException. * The caused exception is required to be serialized. + * <p/> + * This is by default turned off. If you enable this then be aware that Java will deserialize the incoming + * data from the request to Java and that can be a potential security risk. */ public void setTransferException(boolean transferException) { this.transferException = transferException;
