davsclaus opened a new pull request, #24194: URL: https://github.com/apache/camel/pull/24194
## Summary - Change `useHeaderRecipients`, `useHeaderFrom`, `useHeaderSubject`, and `useHeaderReplyTo` defaults from `true` to `false` (secure-by-default) - Aligns with the existing `useJavaMailSessionPropertiesFromHeaders` option (CAMEL-23522) which already defaults to `false` - Update 17 test files to explicitly opt in where tests intentionally set mail headers - Update upgrade guide to document the default change and migration path ## Rationale With `default=true`, untrusted Exchange headers (e.g. from an HTTP consumer) can override the mail endpoint's configured recipients, sender, subject, and reply-to — enabling email redirection attacks. The project's security policy (`design/security.adoc`) states: "New defaults err toward denied unless opted in." Routes that intentionally set mail headers can add the option to the endpoint URI or set it globally: ```properties camel.component.smtp.useHeaderRecipients=true camel.component.smtp.useHeaderFrom=true camel.component.smtp.useHeaderSubject=true camel.component.smtp.useHeaderReplyTo=true ``` ## Test plan - [x] All 229 camel-mail tests pass (225 pass, 4 skipped) - [x] Full reactor build passes - [x] Generated catalogs/DSLs regenerated with `defaultValue: false` - [x] Upgrade guide updated with migration instructions _Claude Code on behalf of Claus Ibsen_ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
