afs commented on issue #3736: URL: https://github.com/apache/jena/issues/3736#issuecomment-3848654270
> ### Documentation > I am not sure about the state of the documentation here: https://jena.apache.org/documentation/fuseki2/fuseki-server-protocol.html > > Especially that there is still the mention of POST an assembler config without specifying the required parameter. Thanks - I've fixed the documentation. About uploading configuration file: This was removed - it's a security issue [CVE-2025-50151](https://www.cve.org/CVERecord?id=CVE-2025-50151) that the project discovered while working on the related CVE. https://jena.apache.org/security/advisories.html `allowConfigFileProperty` is a user-beware facility. The issue is that the configuration file can read potentially any file on the server machine. The current user may have different access rights to those of the running server. There has been a prototype of reloading the configuration area and, without server restart, moving over to the new configuration while not aborting any existing user requests. That's "vision" not planned work 🏗️ . Your use case of replacing a TDB database should be enabled by that. Do you use the admin/configuration area ('run/') or do you run the server with "--conf" and provide the whole configuration yourself? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
