[jira] Resolved: (WICKET-1812) Header contributions occur even though rendering is not allowed by authorization strategy

Juergen Donnerstag (JIRA) Thu, 01 Jan 2009 12:54:06 -0800

     [ 
https://issues.apache.org/jira/browse/WICKET-1812?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Juergen Donnerstag resolved WICKET-1812.
----------------------------------------

       Resolution: Fixed
    Fix Version/s: 1.4-RC2
         Assignee: Juergen Donnerstag

fixed. thanks

> Header contributions occur even though rendering is not allowed by 
> authorization strategy
> -----------------------------------------------------------------------------------------
>
>                 Key: WICKET-1812
>                 URL: https://issues.apache.org/jira/browse/WICKET-1812
>             Project: Wicket
>          Issue Type: Bug
>          Components: wicket
>            Reporter: CROOK
>            Assignee: Juergen Donnerstag
>            Priority: Minor
>             Fix For: 1.4-RC2
>
>
> Components that are not allowed to render due to authorization restrictions 
> still have their headers contributed.  As this doesn't affect the integrity 
> of the application it could possibly result in security issues depending on 
> the components involved.  For now a workaround is to explicitly set the 
> component's visibility using setVisible() or overriding isVisible() which 
> prevents the header contribution from occurring.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Resolved: (WICKET-1812) Header contributions occur even though rendering is not allowed by authorization strategy

Reply via email to