> From: Lukasz Lenart <lukaszlen...@apache.org> > To: Struts Developers List <dev@struts.apache.org>, > Date: 23.09.2015 08:20 > Subject: Re: [GitHub] struts pull request: WW-4540: Strict DMI > > 2015-09-22 14:05 GMT+02:00 Christoph Nenning <christoph.nenn...@lex-com.net>: > > <s:hidden name="method:getBean().key" value="login" /> > > Ok, but this is something that you as a developer did, so you did that > on purpose, you had a special requirement so it's up to you to > configure Struts to allow such action name. But maybe I am wrong and > this is ok, that the such method was blocked? > >
I wanted this to be blocked. It was my test that blocking non-allowed-methdos really works ;) This Email was scanned by Sophos Anti Virus