Header contributions occur even though rendering is not allowed by
authorization strategy
-----------------------------------------------------------------------------------------
Key: WICKET-1812
URL: https://issues.apache.org/jira/browse/WICKET-1812
Project: Wicket
Issue Type: Bug
Components: wicket
Reporter: CROOK
Priority: Minor
Components that are not allowed to render due to authorization restrictions
still have their headers contributed. As this doesn't affect the integrity of
the application it could possibly result in security issues depending on the
components involved. For now a workaround is to explicitly set the component's
visibility using setVisible() or overriding isVisible() which prevents the
header contribution from occurring.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
